Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Is it possible

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> DMZ >> Is it possible Page: [1]
Login
Message << Older Topic   Newer Topic >>
Is it possible - 19.Sep.2006 12:21:47 PM   
future2000

 

Posts: 35
Joined: 26.Feb.2004
From: Guildford
Status: offline 		    hi there,

Just need some advice on whether it's possible to securely setup the following...

isa 2004 with three NIC's (External, Internal and DMZ network). The DMZ will contain a few laptops running xp pro. I want users on my internal network to be able to connect to the laptops via RDP only and then from these laptops be able to use vpn software to vpn into other companies networks to complete work they need to do on these other companies systems. The difference here is that I don't need external network users to connect to the laptop, only users on my internal network.

Obviously security would be paramount here so it would be essential that traffic from the different networks was completely seperate. I imagine this shouldn't be difficult with isa 2004.

How would I implement this. i.e. network relationships etc. Should I use another private range ie 172.16.x.x for the dmz laptops or some of my public addresses?

Thanks

Tom
Post #: 1
RE: Is it possible - 19.Sep.2006 12:56:49 PM   
elmajdal

 

Posts: 5074
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline 		Check Tom's section, he has dozens of articles about DMZ.

a sample as follow :

http://www.isaserver.org/articles/2004multidmzp1.html
http://www.isaserver.org/articles/2004multdmzp2.html

and

http://www.isaserver.org/articles/2004perimeterdomain.html


HTH

_____________________________

Tarek Majdalani

MS Forefront Edge Security MVP
Website : http://www.elmajdal.net/ISAServer
New Section : http://www.elmajdal.net/Win2k8

(in reply to future2000)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> DMZ >> Is it possible Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts