[isapros] Re: Telnet through a Cisco VPN tunnel
- From: "Amy Babinchak" <amy@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- To: <isapros@xxxxxxxxxxxxx>
- Date: Wed, 17 Oct 2007 08:35:21 -0400
If it sees a destination to a particular IP address it is supposed to
send it through the VPN tunnel.
Which led me to think. Why isn't is doing that? Yesterday more
information was sent to me about ports 500 and other stuff related to
VPN but the VPN wasn't my problem. It's the routers problem. Then it hit
me. Can the ISA server route to the IP of the Cisco? What if the Cisco
isn't what's connected to external NIC of the ISA server? Guess what
it's not. Prodding the client got me the information that the Cisco is
on the LAN side of ISA.
Enter a persistent route into the workstation routing table. Done.
As usual. Not an ISA problem. Sometimes it's hard to work remotely.
-----Original Message-----
From: isapros-bounce@xxxxxxxxxxxxx [mailto:isapros-bounce@xxxxxxxxxxxxx]
On Behalf Of Thomas W Shinder
Sent: Tuesday, October 16, 2007 5:55 PM
To: isapros@xxxxxxxxxxxxx
Subject: [isapros] Re: Telnet through a Cisco VPN tunnel
ISA does not proxy Telnet connections.
How is the router making decisions about sending connections over the
VPN?
Tom
Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://blogs.isaserver.org/shinder/
Book: http://tinyurl.com/3xqb7
MVP -- Microsoft Firewalls (ISA)
> -----Original Message-----
> From: isapros-bounce@xxxxxxxxxxxxx
> [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Amy Babinchak
> Sent: Tuesday, October 16, 2007 1:51 PM
> To: isapros@xxxxxxxxxxxxx
> Subject: [isapros] Re: Telnet through a Cisco VPN tunnel
>
> Yep. But it needs to work behind the ISA server. Judging by
> the ISA logs
> it looks like what happens is that ISA uses its power of
> proxy and makes
> the request on behalf of Mochasoft. But because the Cisco
> then sees the
> request coming from ISA it sends it off to the Internet and
> not through
> the VPN tunnel.
>
> So, how do I tell ISA not to proxy this request? The request
> is going to
> be a Telnet session to a particular IP address.
>
> -----Original Message-----
> From: isapros-bounce@xxxxxxxxxxxxx
> [mailto:isapros-bounce@xxxxxxxxxxxxx]
> On Behalf Of Jim Harrison
> Sent: Tuesday, October 16, 2007 12:13 AM
> To: isapros@xxxxxxxxxxxxx
> Subject: [isapros] Re: Telnet through a Cisco VPN tunnel
>
> IIUC, the broken scenario is:
> Mochasoft --> ISA --> Cisco --| VPN |-- AS
> ..and the working scenario is:
> Mochasoft --> Cisco --| VPN |-- AS
> ?
> ________________________________________
> From: isapros-bounce@xxxxxxxxxxxxx [isapros-bounce@xxxxxxxxxxxxx] On
> Behalf Of Amy Babinchak [amy@xxxxxxxxxxxxxxxxxxxxxxxxxx]
> Sent: Monday, October 15, 2007 6:15 PM
> To: isapros@xxxxxxxxxxxxx
> Subject: [isapros] Telnet through a Cisco VPN tunnel
>
> I have a guy with a Cisco 3200 that has a VPN tunnel to American
> Standard. He needs to run Telnet from a workstation on the
> LAN using an
> app called Mochasoft to make a connection to an AS400 on the
> remote end
> of the tunnel. What's supposed to happen is that the Cisco
> will redirect
> any traffic destined for American Standard over the VPN. With the ISA
> server behind the Cisco it's not working. If we connect direct to the
> Cisco and run the telnet session it connects no problem.
> Captures didn't
> show any telnet traffic at all, so I don't know where it's going. I
> can't figure that one out because the ISA log shows Telnet
> initiate...then Telnet closed. The Cisco router is the gateway for the
> ISA server.
>
> Some ideas for me?
>
>
>
>
>
>
Other related posts:
