RE: Up-stream proxy
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Sat, 4 Dec 2004 07:43:59 -0600
Hi Joseph,
Got a Visio of this? Even better, with IP addressing info on the pic,
would make it easier to figure out what's going on.
Thanks!
Tom
www.isaserver.org/shinder
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
-----Original Message-----
From: josephk [mailto:josephk@xxxxxxxxx]
Sent: Friday, December 03, 2004 5:04 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Up-stream proxy
http://www.ISAserver.org
Hi All,
My setup is:
LINE 1
EXT ISA
honeypot
INT ISA
DMZ
PARIMETER
INTERNAL
LINE 2
EXT ISA
honeypot
INT ISA (THIS IS SHARED) basicly 2 lines funneling down to 1
internal ISA box. Works for http but not for smtp or ftp.
DMZ
I'm trying to share the DMZ behind the ISA boxes.
I've noticed some strange things going on when coming in on line 2. It
seems that some replies come back through line 2 but others such as smtp
and ftp
Replies rather then coming back out through line 2 go out through line
1. Is there a way to utilize upstream proxy settings to have the
replies sent to what ever line a request arrived on?
I have finally got one network setup the way I want or at least now I
can start to Monitor and load test to make sure that all my rules,
routes and doubts<grin> are tested.
I've also installed a second line so that I can get another test network
setup that will Also be a back to back setup. I want to test out my own
VPN to VPN. So, I bought some Of the Linksys/Cisco type of routes and
switches for testing. I'm looking forward to that!
What I'm wondering, I'd like to share the internal DMZ zone with both
networks. Mostly for
Web publishing and DNS. I'm running out of machines! My setup is
different then using a cool sounding product such As rainfinity. Is it
a good idea and possible to setup the 172.16.0.0 for both internal
DMZ's?
Any thoughts on different test environments would be appreciated.
Thank you,
Joseph
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
Other related posts:
