Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Secure Nat doesnt work at all
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Secure Nat doesnt work at all - 20.Jan.2007 6:25:11 PM
|
|
|
supreme
Posts: 14
Joined: 20.Jan.2007
Status: offline
|
Hi,
iam installing ISA 2006 on Windows 2003 System and because of a) 70% of my clients are laptop i cant use webproxy settings and b) the clients are not in the AD yet i cant use firewall client so i have to use Secure Nat client.
Isa server has 2 nics, one with public ip, one with internal ip.
the internal ISA ip i gave the clients as gateway and as dns i gave the clients the DC DNS Server which forwards to the ISA internal nic, if it cant resolve.
but it doesnt work, i make following rules:
allowed dns from internal to localhost alluser
allowed http from internal to external alluser
allowed imap/pop3 internal to external alluser
i can get emails, but i cant browse ?!
how can i activate secure nat, so that users can browse without any other config ?
thx in advance
greets
|
|
|
|
|
RE: Secure Nat doesnt work at all - 21.Jan.2007 2:00:10 AM
|
|
|
elmajdal
Posts: 5071
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline
|
quote:
Isa server has 2 nics, one with public ip, one with internal ip.
Great
quote:
the internal ISA ip i gave the clients as gateway
Ok they are considered now SecureNat
quote:
and as dns i gave the clients the DC DNS Server which forwards to the ISA internal nic, if it cant resolve.
STOP.
You forwarded your Internal DNS to ISA ?!?!?
Read This Article : Internal DNS Forwarding Through ISA Server 2004/2006
it will show you how to configure your internal DNS server to forward requests to your ISP's DNS servers
quote:
allowed dns from internal to localhost alluser
allowed http from internal to external alluser
allowed imap/pop3 internal to external alluser
Remove Rule # 1and replace with the rule from the above article .
_____________________________
Tarek Majdalani
MS Forefront Edge Security MVP
Website : http://www.elmajdal.net/ISAServer
New Section : http://www.elmajdal.net/Win2k8
|
|
|
|
|
RE: Secure Nat doesnt work at all - 21.Jan.2007 3:57:25 AM
|
|
|
supreme
Posts: 14
Joined: 20.Jan.2007
Status: offline
|
quote:
STOP.
You forwarded your Internal DNS to ISA ?!?!?
Read This Article : Internal DNS Forwarding Through ISA Server 2004/2006
it will show you how to configure your internal DNS server to forward requests to your ISP's DNS servers
may i refraise again:
my clients have the local nic ip from our DC which makes DNS as DNS server.
at the DC i entered at the DNS console, if its not possible to resolve, it should use the internal NIC of the ISA Server.
in several mins ill do it your way, i report then.
quote:
allowed dns from internal to localhost alluser
allowed http from internal to external alluser
allowed imap/pop3 internal to external alluser
Remove Rule # 1and replace with the rule from the above article .
rule1 u mean the imap/pop3 ? or can i just enter your DNS rule as 1 and the others get number 3-4 ? or didnt i need the rules anymore ?
what would be if i use the FW Client and the user is with his client not at the company net, without isa, will the fw client check this and remove the entries at the users internet explorer etc ?
|
|
|
|
|
RE: Secure Nat doesnt work at all - 21.Jan.2007 5:10:20 AM
|
|
|
supreme
Posts: 14
Joined: 20.Jan.2007
Status: offline
|
yeeahaaww!
it works :)
now i just get the issue that i cant get vpn outgoing get running...lemme check if some post at the board can help me.
thx dude!
|
|
|
|
|
RE: Secure Nat doesnt work at all - 21.Jan.2007 6:54:29 AM
|
|
|
elmajdal
Posts: 5071
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline
|
Glad it worked and thanks for the follow up.
What about the vpn ??? whats not working?
_____________________________
Tarek Majdalani
MS Forefront Edge Security MVP
Website : http://www.elmajdal.net/ISAServer
New Section : http://www.elmajdal.net/Win2k8
|
|
|
|
|
RE: Secure Nat doesnt work at all - 21.Jan.2007 8:12:42 AM
|
|
|
supreme
Posts: 14
Joined: 20.Jan.2007
Status: offline
|
i added the infos at my other post if its ok for you?
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
