• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

ISA DMZ - AD Mode

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> DMZ >> ISA DMZ - AD Mode Page: [1]
Login
Message << Older Topic   Newer Topic >>
ISA DMZ - AD Mode - 6.Nov.2006 7:02:16 PM   
Valeran

 

Posts: 2
Joined: 6.Nov.2006
Status: offline
So I have the following design I'm attempting to get working:

Internet > Pix > ISA Array > SonicWall > Intranet

The ISA array belongs to the corporate AD and the previous SonicWall engineer opened what I believe to be all the necessary ports for AD functionality.  The problem I'm seeing is I can't establish or maintain a secure channel to AD from the ISA servers in this configuration.  When I've attempted this in the ISA 2000 days, I would prop up a split-brain DNS to handle the issues with finding the NAT'd resources; but I was told repeatedly from the SonicWall engineer that I wouldn't need that.  If someone can point me in the right direction that would be great.  Thanks.

-v
Post #: 1
RE: ISA DMZ - AD Mode - 8.Nov.2006 10:14:57 AM   
Valeran

 

Posts: 2
Joined: 6.Nov.2006
Status: offline
SOLVED:

So I did need the split-DNS and many many ports opened on the SonicWALL to successfully establish and maintain a secure channel to the domain from the DMZ.  I offically don't like SonicWALL firewalls, no matter what anyone else may say :)

-V

(in reply to Valeran)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> DMZ >> ISA DMZ - AD Mode Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts