Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
auto discovery for 2 different networks in a single domain
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
auto discovery for 2 different networks in a single domain - 14.Feb.2008 10:49:53 AM
|
|
|
canibeyaz
Posts: 23
Joined: 12.Jan.2007
Status: offline
|
Hi there,
I have ISA 2004 sp3 with 3 NICs. One of the networks represent internal network (10.206.1.0 /24) , the other the external and 3rd one is for remote sites which are accessible through a router connected to ISA 2004. Everything works perfect except for one thing. I use wpad for auto discovery and i use dns name (http://myisaserversfqdn/wpad.dat) It works fine for the internal network. I want to do the same thing for remote network. i know that i cant use the fqdn of the isa server as its ip address is not reachable through remote networks interface. how can i do that ? any articles you guys could give me link to ?
< Message edited by canibeyaz -- 14.Feb.2008 10:53:27 AM >
|
|
|
|
|
RE: auto discovery for 2 different networks in a single... - 14.Feb.2008 11:46:32 AM
|
|
|
Rotorblade
Posts: 894
Joined: 27.Feb.2007
Status: offline
|
Hi,
Router connected to ISA? Will need a little more information. Can you diagram network and ISA interface(s) details?
If the internal network and ISA server is not reachable from the remote network, then you need to fix internal routing!
HTH
RB
_____________________________
David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003
|
|
|
|
|
RE: auto discovery for 2 different networks in a single... - 14.Feb.2008 2:43:12 PM
|
|
|
canibeyaz
Posts: 23
Joined: 12.Jan.2007
Status: offline
|
i guess that wasnt clear enough sorry. let me give detailed info.
My internal network id is 10.206.1.0 /24 the interface of ISA is 10.206.1.109. FQDN is nwt-kavfw01.nwt.com.tr..The other interface is connected to the internet and has a public ip. The last interface connects to all remote networks (over 20 different subnets. ) . Ip address of the ISA interface is 172.16.44.1/30 and the interface of the router is 172.16.44.2/30 . The users in remote subnets uses 172.16.44.1 as their proxy settings and connects to the internet. i want to automatically publish proxy information for remote subnets like i do for internal network.
btw, routing works fine. but as you know the remote networks are behind the interface of 172.16.44.1 so they cant use the internal interface of isa (10.206.1.109)..so i need to publish proxy info for 2 different networks.
< Message edited by canibeyaz -- 14.Feb.2008 2:56:12 PM >
|
|
|
|
|
RE: auto discovery for 2 different networks in a single... - 14.Feb.2008 2:58:19 PM
|
|
|
spouseele
Posts: 12782
Joined: 1.Jun.2001
From: Belgium
Status: offline
|
Hi canibeyaz,
check out Multi-Networking WPAD Support in ISA 2004. As far as I know it applies to ISA 2006 too.
HTH,
Stefaan
|
|
|
|
|
RE: auto discovery for 2 different networks in a single... - 14.Feb.2008 3:08:00 PM
|
|
|
canibeyaz
Posts: 23
Joined: 12.Jan.2007
Status: offline
|
thanks alot. thats what i had been desperately looking for. will give it a try and let you know.
|
|
|
|
|
RE: auto discovery for 2 different networks in a single... - 14.Feb.2008 3:35:19 PM
|
|
|
Rotorblade
Posts: 894
Joined: 27.Feb.2007
Status: offline
|
To add...
If you haven't done so, with the 20 subnets, you will need to create persistent static route mappings for each subnet that is reachable from the ISA remote network interface. This needs to be done on the ISA server. Also make sure that you have properly defined the Remote network object IP ranges in ISA for that network and its subnets. This should only include all the subnets reachable from that NIC.
http://www.isaserver.org/tutorials/Configuring-Domain-Members-Back-to-Back-ISA-Firewall-DMZ-Part3.html
HTH
RB
_____________________________
David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003
|
|
|
|
|
RE: auto discovery for 2 different networks in a single... - 14.Feb.2008 5:27:12 PM
|
|
|
canibeyaz
Posts: 23
Joined: 12.Jan.2007
Status: offline
|
i have done exactly the same things you mentioned. and as i said i dont have any problem with ISA configuration. all i wanna do is publish auto discovery for the remote subnets in addition to the internal network
|
|
|
|
|
RE: auto discovery for 2 different networks in a single... - 15.Feb.2008 3:39:12 PM
|
|
|
Rotorblade
Posts: 894
Joined: 27.Feb.2007
Status: offline
|
Good, it should work them.
Regards,
RB
_____________________________
David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
