I have had isa in place sort of for about a year now but I do not have it set up quite right. I will explain my set up below. I am looking for some suggestions of how I can get the following uses out of the device:
1. Most importantly vpn and web and owa publishing.
2. Would be nice to use it for web caching as well.
Also I have read the pix article Tom has but I am still a bit confused about the best way to do this.
So here goes:
7206 router from isp ---- pix 515e----internal lan 192.168.100.x (the 100.x subnet is at our colo site)---ds3 back to hq quarters
the pix has one interface going to the 7206 and the other on the internal lan.
We do not have a dmz set up and arent really interested in setting one up.
We have 16 other remote sites that have point to point t1 back to the 7206 and they are muxed through the 7206.
So with that being said...would it be best to put my isa box on the 192.168.100.x network as a unihomed device and have my pix forward all incoming traffic to it for vpn and owa and websites i published through it?
Thoughts, suggestions. Let me know if you all need more info.
Tom this makes sense to me for sure...I read the part just now in the "playing well with others" article.
Is there any more documentation on setting this scenario up? I am a bit confused on where the traffic enters...I am guessing for the stuff I want to go through the pix I point it to the pix and the stuff I want to go through isa i point to isa?