VM ISA Server, Two Networks, 3 NIC's? (Full Version)

All Forums >> [ISA 2006 Firewall] >> Network Infrastructure



Message

gbkyle -> VM ISA Server, Two Networks, 3 NIC's? (2.Jul.2008 4:06:58 PM)

Hey guys, quick question. I built up a VM ISA server and its main purpose is to do web cacheing. I currently have two NIC's in the box, one reaching the outside on a 192.168.1.x addy. I also have a 10.31.200.* network that I want workstations to reside on, 10.31.100.* for servers, and an additional network 192.168.8.* for various other things, such as demo. I added my 10.31.200.1-255 range to the internal network on ISA fine, but when I went to add the 192.168.1.1-255 range, I was immediately locked out of the box and could not get back in. My firewall policies are allow all outbound traffic from internal to external, and allow all traffic internal to internal. Can ISA bridge networks like that on one NIC? or should I add a third NIC for the 192.168.1.* network?

Thank you,

Kyle



gbarnas -> RE: VM ISA Server, Two Networks, 3 NIC's? (4.Jul.2008 11:35:56 PM)

Since its VMWare, just add another NIC. I have a VM configuration similar to this - a back to back, and the back firewall has 3 nics - Perimeter, Internal (for servers) and Workstations. ISA routes just fine between the networks as long as you have proper access rules defined.

You probably can do what you tried, but you need to be sure you properly define all of the network address ranges on your ISA network. BUT - I'm pretty sure that's not a "best practice" and probably bordering on "bad practice". ;)

Glenn



Page: [1]