Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Tri-homed server and routing from internal lan to DMZ
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Tri-homed server and routing from internal lan to DMZ - 30.Jul.2002 3:48:00 PM
|
|
|
Yan
Posts: 4
Joined: 30.Jul.2002
From: Russia
Status: offline
|
I have tri-homed computer between an external network, DMZ and internal network. I want to allow routing between internal network and DMZ, or at least make servers in DMZ accessible from internal network.
Packet filter will not allow me to create this filter.
IP Protocol filter only allows client protocols, not allowing to select destanation.
Can I create this filter or ISA can't this?
Yan
|
|
|
|
|
RE: Tri-homed server and routing from internal lan to DMZ - 30.Jul.2002 3:59:00 PM
|
|
|
Yan
Posts: 4
Joined: 30.Jul.2002
From: Russia
Status: offline
|
sorry:
Protocol Rules only allows protocols, not allowing to select destanation.
|
|
|
|
|
RE: Tri-homed server and routing from internal lan to DMZ - 30.Jul.2002 8:57:00 PM
|
|
|
Yan
Posts: 4
Joined: 30.Jul.2002
From: Russia
Status: offline
|
Thank you.
Can I use protocol rules with select destination (non http/ftp protocol)? I see, what i can define destanations only for http and ftp (for ftp over http-proxy) protocols.
I want give access from server in internal network to server in DMZ, but only to it. It's possible?
|
|
|
|
|
RE: Tri-homed server and routing from internal lan to DMZ - 30.Jul.2002 11:50:00 PM
|
|
|
spouseele
Posts: 12782
Joined: 1.Jun.2001
From: Belgium
Status: offline
|
Hi Yan,
ISA's outbound access control is based on protocol and site&content rules. Basically a client is granted/denied access to a service with a protocol rule and to a destination with a site&content rule. However, in the current release of ISA you cann't control for which destinations a client may use a particular protocol.
So, you need to define a site&content rule with a destination set containing your DMZ server and who applies to the internal server (client set or user/group).
HTH,
Stefaan
|
|
|
|
|
RE: Tri-homed server and routing from internal lan to DMZ - 31.Jul.2002 8:40:00 AM
|
|
|
Yan
Posts: 4
Joined: 30.Jul.2002
From: Russia
Status: offline
|
You were writing about the "current release". Do you know when the next version will be available and whether it will have that capability?
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
