Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

VPN IP pool added to Intra-Array Network ??

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> VPN >> VPN IP pool added to Intra-Array Network ?? Page: [1]
Login
Message << Older Topic   Newer Topic >>
VPN IP pool added to Intra-Array Network ?? - 24.Sep.2008 5:42:34 PM   
amos.max

 

Posts: 4
Joined: 10.Jan.2004
Status: offline 		Hi All,
I have an 2006 Enterprise Array (2 Servers) with the following config:
External: <web routable ips)
Internal: 192.168.99.0/24
Perimeter: 192.168.98.0/24
Intra-Array: 172.16.1.0/24
VPN Pool: 172.16.255.1-22 (10 Addresses on each Array Member)
 
For some reason the VPN Pool addresses are being added to the routing table of the Intra-Array network.
This of course results in Events 15120 and 14147 Event Log entries
 
(partial) Route Print on FW1:
Network          Mask                  Gateway     Interface
172.16.255.12  255.255.255.252  172.16.1.2  172.16.1.1
.. couple others
172.16.255.255 255.255.255.255  172.16.1.1  172.16.1.1
 
Note: 172.16.1.1 is the Intra-Array address on FW1; 172.16.1.2 is the Intra-Array address on FW2
 
I have to confess I don't quite understand why those routing entries are set that way. They're obviously dynamic routes, but why is ISA bindin them to the Intra-Array Network?
Do I need to set manual routes for VPN access?
 
Thx in advance for help and pointers!
Rgds - Marcus.
 
 
Post #: 1

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> VPN >> VPN IP pool added to Intra-Array Network ?? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts