Adding a static route the way you did should work fine, did you configure the network rule correctly and after configuring the static route, have you tried a ping from a client to that network and looked at the ISA monitor? If you get drop's without a rule indicated it's because the network rules are misconfigured.
Thanks. When I ping I always observe a 'denied connection' by the 'Default Rule' in the ISA monitor. I've tried various network routing rules in the past but always see the same thing. Any suggestions?
Have you turned on the Result code and error information tabs yet in logging? If not, goto the logging tab > on the coloms / right click and add the above mentioned columns. this should give you some extra info on the drops.
Also can you screenshot / dump the dropped packets and the rule that you think should be allowing the traffic?
I reestablished a network rule and policy and am still getting a 'denied connection' in the monitor, however it is no longer because of the 'default rule'. Actually no rule is being reported anymore, but the result code is "0xc004002d FWX_E_UNREACHABLE_ADDRESS" which tells me that it is a 'gateway' issue.
From a command prompt on the ISA Server when I try to ping 192.168.12.10, I get a 'destination host unreachable' eventhough I added a persistent route on the ISA Server to 192.168.12.0 via the gateway 192.168.1.161. It is as if ISA refuses to (or is ignorant of how to) forward packets to a gateway that it does not logically 'own'.
I know that the route to 192.168.12.0 via 192.168.1.161 works fine because I have no problem accessing 192.168.12.0 from any PC without ISA.
I have a feeling that it is the ISA software itself that is prohibiting the forwarding of packets to the 192.168.1.161 gateway. Can you (or anybody) suggest an appropriate network rule/policy config within ISA? What does you config look like?
Wireloop...can you let us see what your routing table looks like please? Once we can reach your remote network from the ISA firewall, we can work on making the firewall route your traffic appropriately.
An other thing, if the Networks are defined and the Netwoek Rules in place, I wounder which type of Network Rule you have created? NAT or ROUTE roule between the networks which you'r having problems with.