Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
What kind of ISA server configuration is this?
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
What kind of ISA server configuration is this? - 15.Mar.2008 10:52:07 PM
|
|
|
persiannight
Posts: 34
Joined: 5.Mar.2007
Status: offline
|
My ISA server has 2 nics, an internal (10.1.0.5/16) and an external nic (10.4.0.5/16, gateway 10.4.0.1 and DNS server IP's of my ISP's DNS servers) the external NIC plugs into a PIX firewall with IP (10.4.0.1/16 - the default gateway IP on the external NIC in the ISA server). Is this still considered an edge firewall or is this a back-end firewall?
|
|
|
|
|
RE: What kind of ISA server configuration is this? - 16.Mar.2008 12:20:34 PM
|
|
|
tshinder
Posts: 47669
Joined: 10.Jan.2001
From: Texas
Status: online
|
From the ISA point of view, it's generally considered an edge firewall.
Also, you should not use an external DNS server on the ISA Firewall's NICs. Put an internal DNS server on the internal interface, and then create a rule on the ISA Firewall that allows outbound DNS connections from that DNS server.
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
|
RE: What kind of ISA server configuration is this? - 18.Mar.2008 10:55:31 AM
|
|
|
persiannight
Posts: 34
Joined: 5.Mar.2007
Status: offline
|
My mistake, I don't have external DNS servers on m NIC's in the ISA server. I had thought that it was an edge-firewall configuration but one of the posts here had me questioning that. I have the DNS firewall rule created for my Domain controller doing external forwarding.
|
|
|
|
|
RE: What kind of ISA server configuration is this? - 18.Mar.2008 4:18:04 PM
|
|
|
jackstevens_100
Posts: 31
Joined: 18.Mar.2008
From: Telford, Shropshire, United Kingdome, Planet Earth
Status: offline
|
I would class that as a edge firewall do not use external DNS servers really thats a very bad network practise
_____________________________
THE I.T TCAT Student
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
