• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Trouble config Firewall Client with 172.16.x.x/24 subnets

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> Firewall Client >> Trouble config Firewall Client with 172.16.x.x/24 subnets Page: [1]
Login
Message << Older Topic   Newer Topic >>
Trouble config Firewall Client with 172.16.x.x/24 subnets - 5.Jan.2006 2:38:08 PM   
sysgrp@abaris.se

 

Posts: 2
Joined: 5.Jan.2006
Status: offline
Hi!
i have a subneted 172.16.16.0/20 net (172.16.16.0-172.16.31.255)
i now try to put a new nic on ISA with subnet address 172.16.32.0/24 (172.16.32.0-172.16.32.255)
For this new net I want to use "firewall client" and not SecureNat, but I cant get the client to understand it.
so It seems that it handle it like an internal Net :-(

My end goal is to segment my net in diffrent Zones, and in some Zones with higher security, I want to use group and user controlled access.


Runned FwcTool.exe and it dont show up as a LAT (ni sign of the 172.16.32.0/24 net and thats good)
Local address table (LAT):
   172.16.16.0 - 172.16.31.255
   172.16.16.0 - 172.16.16.255
   172.16.17.0 - 172.16.31.254
   172.16.48.0 - 172.16.48.255
   172.16.66.0 - 172.16.66.255
   172.16.81.0 - 172.16.81.255
   224.0.0.0 - 255.255.255.254
   127.0.0.0 - 127.255.255.255

runned route print and it looked like this for short
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
     172.16.16.0    255.255.240.0    172.16.18.132    172.16.18.132     20
  172.16.255.255  255.255.255.255    172.16.18.132    172.16.18.132     20
Seems like the subnetted network still have something to do with the orginal  /16 network,
worked like charm for years on all other aspects

So
1. does the client go after the LAT or the route print ?
2. how do I enable "Firewall Client" for my segmented LAN


Br
/Mikko

Post #: 1
RE: Trouble config Firewall Client with 172.16.x.x/24 s... - 13.Jan.2006 5:16:51 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Mikko,

Check my answer here:

http://forums.isaserver.org/Static_routing_not_working_with_Firewall_Client/m_2002002798/tm.htm

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to sysgrp@abaris.se)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> Firewall Client >> Trouble config Firewall Client with 172.16.x.x/24 subnets Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts