Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Tri Homed server and server publishing

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> Server Publishing >> Tri Homed server and server publishing Page: [1]
Login
Message << Older Topic   Newer Topic >>
Tri Homed server and server publishing - 29.Jul.2004 10:42:00 PM   
jonathanew

 

Posts: 4
Joined: 29.Jul.2004
From: UK
Status: offline 		Hi can anyone help.

Have a new ISA 2004 server in test
external interface - 62.190.6.116/117
perimeter - 192.168.0.x
internal - 172.16.x.y

Have a box on the perimeter and want to use a server publishing rule to access it (https server). Cant use a web publishing rule as used for ssl gateway.

Just cant get the publishing rule to work to perimeter. Go through the wizard and select one of the external IP addresses as the listener and the perimeter machine as the target, but having no joy.

I have tried setting up network config with nat from external to perimeter, but then the rule fails with a message in the monitor.

I can see the packets getting dropped through the log - with attempts to 443 inbound on the external listener getting dropped by the default rule.

Can anyone help - its driving me mad, im sure its something to do with network rules and NAT/route config.
Many Thanks
Jonathan
Post #: 1
RE: Tri Homed server and server publishing - 30.Jul.2004 2:27:00 AM   
tshinder

 

Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Jonathan,

This definitely will work. What is the *exact* config of your Network Rule between External and DMZ? (please don't tell me you used a network template!)

Make sure IIS isn't installed on the ISA firewall, and there isn't an SSL listener that it competeing for the same socket.

HTH,
Tom

(in reply to jonathanew)
Post #: 2
RE: Tri Homed server and server publishing - 30.Jul.2004 11:55:00 AM   
jonathanew

 

Posts: 4
Joined: 29.Jul.2004
From: UK
Status: offline 		Tom

Thanks fo this. I have fallen victim to the network configuration wizard - something I never intend on using again.
Out of interest the problem was because the NAT rule was from external to DMZ and not the other way way. Thinking logically it is obivous why this didnt then work.

However the wizard had set up natting between the internal and DMZ networks which caused further (other problems)

I wiped the config and started again and all is good on that front now. Just tackling all the other rules our existing back to back ISA 2000 configuration had in it, but looking better.

Many thanks for your help
Jonathan

(in reply to jonathanew)
Post #: 3
RE: Tri Homed server and server publishing - 4.Aug.2004 12:25:00 AM   
tshinder

 

Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Jonathan,

Great! Good to hear you got it working and thanks for the follow up! Those network templates can really confuse things sometimes.

Thanks!
Tom

(in reply to jonathanew)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> Server Publishing >> Tri Homed server and server publishing Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts