Welcome to ISAserver.org

Authenticated vs. Unauth. DMZ Networks

Users viewing this topic: none

Logged in as: Guest

Printable Version

All Forums >> [ISA Server 2004 Firewall] >> DMZ >> Authenticated vs. Unauth. DMZ Networks

Page: [1]

Message

<< Older Topic Newer Topic >>

Authenticated vs. Unauth. DMZ Networks - 14.Jul.2006 5:36:13 PM

picosam

Posts: 16
Joined: 6.Jul.2006
Status: offline

I know the difference betweek them of course, but I would like to know how ISA Server does. Is there a special kind of configuration I'm supposed to apply to make ISA understand that this DMZ is authenticated or not? Here's what I want to do:

I want to set up an ISA Server 2006 box with 4 NIC cards:

Internal
---------
IP: 192.168.111.1
GW: N/A
DNS: 192.168.111.2

External
---------
IP: 192.168.110.2
GW: 192.168.110.1 (Pointing to my DSL router)
DNS: 192.168.111.2
(Is this correct? Or should the DNS for the external interface card not point to the internal DNS server? Please note that I also have the ISA Server machine set up as a published DNS Server for my domain. In effect, there are two DNS Servers. The one set up on the ISA machine (non-recursive, non-forwarding) and the internal one (non-recursive, forwards all external domains to my ISP dns servers, prevented from contacting any other dns servers by ISA).)

Perimeter (this should be my authenticated DMZ; it'll be hooked up to a web server and a front end exchange server that no one but people who authenticate again's my active directory should be able to connect to)
-----------
IP: 192.168.112.1
GW: N/A
DNS: 192.168.111.2 (this should pick up easily due to routing relationship between Internal and Perimeter network; right?)

DMZ
-----
This is my un-authenticated segment; I will connect it to a wireless router and provide connection to laptops with wifi cards.
1- How should I configure this NIC?
2- Are the clients connecting via wireless router going to be called VPN clients here?

Thank you,
Sammy