ISA 2006 as a Single NIC Proxy with web filtering (Full Version)

All Forums >> [ISA 2006 Web Proxy] >> Unihomed



Message

DanielMcIntyre -> ISA 2006 as a Single NIC Proxy with web filtering (14.Feb.2008 4:54:18 PM)

Hello,
I am setting up a new ISA 2006 server Enterprise from scratch.  It will be used as a Web Proxy server with caching.  Once I can get on the internet I will be installing Cyblock ISA for content filtering.  I followed Tom Schinder's Article from this site entitled "ISA Server 2006:  Installing ISA 2006 Enterprise Edition in a Unihomed Workgroup Configuration."  I also followed his 4 Post installation articles. 

I cannot get on the internet, on the server, or on any other PCs.  I am sure I am missing a few things, but there are also things that I want to change that I cannot b/c they are greyed out.  I cannot disable any application filters, or any of the default Firewall Policies.  I created a new firewall policy to allow all protocols from Internal and Local to External.  This Server is a domain member and I am also not really seeing anything involving Active Directory, but that may be b/c I am used to ISA 2000, and this one just looks different.  Why can't I get on the Internet?



elmajdal -> RE: ISA 2006 as a Single NIC Proxy with web filtering (14.Feb.2008 5:42:28 PM)

quote:

.  I created a new firewall policy to allow all protocols from Internal and Local to External.


There is nothing called External Network when u are using a Unihomed ISA !


Your Rules have to be From Internal to Internal .

quote:

In single network adapter mode, ISA Server recognizes itself (the Local Host network). Everything else is recognized as the Internal network. There is no concept of an External network. The Microsoft Firewall service and application filters operate only in the context of the Local Host network. (ISA Server protects itself no matter what network template is applied.) Because the Firewall service and application filters operate in the context of the Local Host network, you can use access rules to allow non-Web protocols to the ISA Server computer. This has implications for running applications located on the ISA Server computer.


Source : http://www.microsoft.com/technet/isa/2004/plan/unsupportedconfigs.mspx



DanielMcIntyre -> RE: ISA 2006 as a Single NIC Proxy with web filtering (18.Feb.2008 1:01:49 PM)

Thank you very much for your help.  I can get online now.



Page: [1]