Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Two NICs, SecureNAT not working for web traffic

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> SecureNAT Client >> Two NICs, SecureNAT not working for web traffic Page: [1]
Login
Message << Older Topic   Newer Topic >>
Two NICs, SecureNAT not working for web traffic - 10.Dec.2007 9:58:44 PM   
HendersonD

 

Posts: 17
Joined: 15.Oct.2007
Status: offline 		My ISA Server has two NIC cards, both on the inside of my network. My internal address space stretches from 10.121.0.0 to 10.121.255.255. These are how the two NICs are configured:

NIC 1
IP Address: 10.121.125.105
Mask: 255.255.252.0
Gateway: 10.121.125.1
DNS Server: 10.121.125.101

NIC 2
IP Address: 10.121.176.1
Mask: 255.255.254.0
Gateway: left empty
DNS Server: 10.121.125.101

I have two networks defined in ISA. One has the range defined below and is defined as the Internal network
10.121.0.0 - 10.121.175.255
10.121.178.0 - 10.121.255.255

The other one has the range shown below and is called Guest Wireless
10.121.176.0 - 10.121.177.255

I have a network rule that connects the Internal and Guest Wireless to the External network. I have a Firewall policy defined that allow web traffic (HTTP and HTTPs) from Internal network to All Networks (and Local Host) for Authenticated Users. For the students and staff that authenticate to Active Directory, the internet access works fine and has for several months.

I have another Firewall Policy that allows anonymous web traffic from the Guest Wireless network to All Networks (and Local Host). The problem is I cannot get web access working from the guest wireless network. The users of the Guest Wireless should use SecureNAT while the authenticated users use Web Proxy. I have the default gateway for guest wireless clients set to 10.121.176.1 which is the IP address of one of the ISA NICs.

I do have a Cisco 6509 layer 3 switch/router that connects my various subnets including the 176 subnet and the 125 subnet (two ISA server nics).

I have worked on this for many hours to no avail, any ideas on how to get the Guest Wireless working? I did read Tom’s excellent article on Guest Wireless on a DMZ but still have not been able to make this work

http://www.isaserver.org/tutorials/2004wirelessdmzpart1.html

< Message edited by HendersonD -- 10.Dec.2007 10:00:47 PM >
Post #: 1
RE: Two NICs, SecureNAT not working for web traffic - 27.Dec.2007 4:38:33 AM   
royh

 

Posts: 280
Joined: 23.Feb.2007
From: Lebanon
Status: offline 		Looks like its a DNS problem...




_____________________________

Roy Haddad,M.Sc
CCNA, MCSE 2003 Messaging & Security,C|EH

(in reply to HendersonD)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> SecureNAT Client >> Two NICs, SecureNAT not working for web traffic Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts