Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
SNAT and VPN
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
SNAT and VPN - 28.May2001 8:52:00 PM
|
|
|
jamesm
Posts: 3
Joined: 28.May2001
From: Calgary, Alberta, Canada
Status: offline
|
Is it possible that SNAT clients can reach hosts on the remote side of a VPN connection dialed out from the ISA Server ? This works fine using the firewall client but can it work with SNAT ? Thanks.
|
|
|
|
RE: SNAT and VPN - 29.May2001 10:37:00 PM
|
|
|
marionoe
Posts: 7
Joined: 25.May2001
From: Westlake Village, CA USA
Status: offline
|
I have set up two VPN tunnels(server to server) and I am able to access
hosts on the remote network on one of the connections, but not the other. All three network segments use SNat clients. Both remote SNat clients can access hosts on my local network. I would say that "most of the time" it works just fine.
Mnoe
quote:
Originally posted by jamesm:
Is it possible that SNAT clients can reach hosts on the remote side of a VPN connection dialed out from the ISA Server ? This works fine using the firewall client but can it work with SNAT ? Thanks.
|
|
|
|
RE: SNAT and VPN - 29.May2001 11:00:00 PM
|
|
|
jamesm
Posts: 3
Joined: 28.May2001
From: Calgary, Alberta, Canada
Status: offline
|
I appreciate the response but the problem is that there is no RRAS or ISA server on the other side so can the SNAT clients take on the characteristics of the ISA servers VPN connection like through the firewall client. ie. no established routing path between the two lans, only the ISA server can communicate. Thanks Again. quote:
Originally posted by marionoe:
I have set up two VPN tunnels(server to server) and I am able to access
hosts on the remote network on one of the connections, but not the other. All three network segments use SNat clients. Both remote SNat clients can access hosts on my local network. I would say that "most of the time" it works just fine.
Mnoe
|
|
|
|
|
RE: SNAT and VPN - 30.May2001 4:06:00 PM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi James, What exactly are you trying to do here? Do you want VPN clients to call your ISA Server and then be able to access resources on the internal network? Tom ------------------
Tom Shinder
http://www.isaserver.org/shinder/
 Get It Here
|
|
|
|
|
RE: SNAT and VPN - 30.May2001 4:24:00 PM
|
|
|
jamesm
Posts: 3
Joined: 28.May2001
From: Calgary, Alberta, Canada
Status: offline
|
Hi Tom, On the local side I have ISA Server running SNAT for its clients and they do not have the firewall client enabled on them at all. The local ISA server is connecting to the remote network via PPTP through a Cisco router that is doing PAT the the remotes internal RAS server. There is no ISA or Proxy server on the remote network. Only the local SNAT hosts need to see the remote network (support setup) not vice versa (ie. no bidirectional routing needed between networks) Now, if I have the firewall client enabled on the local hosts, when I am pptp'd out to this remote network from the ISA server all of my local hosts can communicate with systems on the remote network as the ISA server is doing it on their behalf. So the whole local network gains access to the remote network via this one simple RAS Server PPTP connection on the remote network. Obviously since this is a simple RAS PPTP connection the remote network (with the exception of maybe the RAS server itself) cannot route back through the local ISA server (something I desire) additionally, I do not have to set up RRAS or ISA Server at the remote sites (yet). I would like this same functionality under SNAT and I am wondering if there is a way I can configure it to be so. Appreciate the help......James.
quote:
Originally posted by tshinder:
Hi James,What exactly are you trying to do here? Do you want VPN clients to call your ISA Server and then be able to access resources on the internal network? Tom
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
