• Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Routing Problem

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> Network Infrastructure >> Routing Problem Page: [1]
Message << Older Topic   Newer Topic >>
Routing Problem - 26.Jul.2006 10:02:42 AM   


Posts: 5
Joined: 26.Jul.2006
Status: offline
My situation is:

20 internal networks (192.168.x.x) behind ISA Server 2004 Standard Edition. I have added the routes to Isa Server with the command:

route add x.x.x.x mask x.x.x.x gw -p

All the networks have added to Internal Networks of Isa.

The problem is that Isa denied protocols from internal network to internal network. Isa is not a router?

What kind of workaround i need to implement?

< Message edited by giorg70 -- 26.Jul.2006 5:49:09 PM >
Post #: 1
RE: Routing Problem - 26.Jul.2006 5:53:23 PM   


Posts: 5
Joined: 26.Jul.2006
Status: offline
I need to use a router for default gateway?

(in reply to giorg70)
Post #: 2
RE: Routing Problem - 26.Jul.2006 7:38:57 PM   


Posts: 7
Joined: 9.Jan.2006
Status: offline
Assuming that ISA configuration is correct (ISA internal network definition / Routing table)...

Does Router 1, and router 2 have default routes to ISA internal if?

Routing infrastructure would look like this:

ISA -- default router points to linux router
Router1 -- ISA
Router2 -- ISA

In essence, default routes point to next "upstream" router out to the internet (assuming your remote networks use below 'Internet' as their ISP).

Have you considered using a routing protocol?  OR...design your IP infrastructure so that you have good contigious subnets so that you can take advantage of summary routes so that your routing tables are small.

Beyond that...more information is going to be required.


(in reply to giorg70)
Post #: 3
RE: Routing Problem - 27.Jul.2006 10:33:12 AM   


Posts: 5
Joined: 26.Jul.2006
Status: offline
The question is: if i'll configure the routers with default gw pointing to isa server then the infrastructure function well?

(in reply to jedforr)
Post #: 4
RE: Routing Problem - 28.Jul.2006 7:23:50 PM   


Posts: 7
Joined: 9.Jan.2006
Status: offline
Should work fine having R1/R2 both having default routes to ISA (it is the next hop -- so that they know how to get to yahoo.com).

The most important routes that you will manually create are your routes "back" to the R1/R2.  The easiest way is to create route summaries on ISA that account for all subnets on R1 and R2 respectively (or create individual routes for each subnet --ugg).  What are your subnets on R1/R2?  If you need assistance, do a google on route summarization or supernetting.

Since your DMZ --> Internal is a route relationship, then you will need to account for those routes on your linux router as well.  NAT relationship would simplify things tremendously there.

What problems are you experiencing?

good luck,


(in reply to giorg70)
Post #: 5
RE: Routing Problem - 29.Jul.2006 5:15:55 PM   


Posts: 107
Joined: 6.Feb.2006
Status: offline
  1. Choose one of your two routers to use as your "core router", preferably the most powerful one.
  2. Add routes on each of your routers for networks on the other router, pointing them at the ethernet interface of the other router
  3. Change the default gateways of your server to the ip address of your "core router".
  4. Make sure that your routers have their default gateway set to the ISA Server IP.

You should be able to get by with one route in this scenario on your ISA server...

route add mask gw IP_OF_CORE_ROUTER -p

(in reply to jedforr)
Post #: 6

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> Network Infrastructure >> Routing Problem Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts