Configuring VPN site into Local Domain (Full Version)

All Forums >> [ISA 2006 Firewall] >> Network Infrastructure



Message


Sunny.C -> Configuring VPN site into Local Domain (26.Jun.2007 2:11:28 AM)

Senario Layout
Internal network------>ISA------>DMZ------>Cisco 1811------> Internet------>
(192.168.x.x)    (192.168.0.48)  (10.0.1.10)   (10.0.1.254)

Internet------>Remote office
                       (192.168.138.x)

I hope the diagram is understandable.
I am trying to configure a remote branch office to be on the same internal domain structure and no offsite DC will be available.
Basically the remote sites are configured using the DMZ interface which terminate on the Cisco 1811 router. I have configured a firewall rule  to allow all outbound traffic from the DMZ subnet to the internal network along with a routing rule.
Am i missing anything out?
Also if the head office DC or link goes down what is the best work around for this?
putting another DC offsite is not really a option since the branch only has 3 users.

Let me know if i did not explain properly,
Cheers.




alex3299 -> RE: Configuring VPN site into Local Domain (5.Jul.2007 2:13:01 PM)

Since the remote office only have 3 users, the best way to solve your problem is to make VPN connections from the Remote office to the ISA Server, the cisco device needs to route the VPN related traffic to the ISA Server.

Enable cached credentials on the remote office pcs, using GPOs.

Maybe this will solve your problem...





Sunny.C -> RE: Configuring VPN site into Local Domain (5.Jul.2007 7:57:18 PM)

Already done and it is so far working well.
quote:


Enable cached credentials on the remote office pcs, using GPOs.

What will this achieve?




Page: [1]