From: Sao Paulo, Brazil
Hi! I've a question about routing on ISA Server 2004.
This is the scenario: 3 NIC ISA Server 2004 (on Windows Server 2003 SP1, both fully updated) 1 NIC on Internal network (172.16.x.y) 1 NIC on External network (public IP provided by ISP) 1 NIC on Perimeter (Several 10.x.y.z networks behind a Linux box, administered by a third-party team)
Premises are: - The traffic between Internal and Perimeter has no restrictions and uses routing relationships (in ISA Server) - There's no publishing at all. - External interface serves only to Internal.
Following a recommendation in chapter 6 of Shinder's book, i've configured all possible routes between Internal and Perimeter BEFORE setting up ISA Server. So i've achieved the communication needed between Internal and Perimeter. Then set-up ISA Server, create rules and network relationships and everything "gone green".
Unfortunately, the Perimeter internal structure will change mostly every month, according to new projects. So the routing table has to be changed at same pace. Question is: i can simply add the routes, network address, network and firewall rules OR i've to follow the book's recommendation and re-install ISA for each new route/network.
Thanks in advance! (Sorry about the poor english.) Fabio R Carvalho