ISA to IAG site to site vpn

ISA to IAG site to site vpn (Full Version)

All Forums >> [ISA 2006 General] >> Installation and Planning

Message

otter -> ISA to IAG site to site vpn (6.Jul.2008 9:34:00 PM)
We have a new branch office coming on line and I want to create a site to site VPN utilizing our IAG and our older ISA 2004 box. The IAG box is currently being used for perimeter security and ssl vpn for remote users. Since I already have an ISA box that I can use, I would like to create a site to site vpn with the IAG box. I have found some information discouraging the site to site vpn to an IAG but I don't know why. I can provide more information and I could really use some help if anyone has any experience with this type of setup. THANKS!

tshinder -> RE: ISA to IAG site to site vpn (15.Jul.2008 8:17:25 AM)
Yes, I would NEVER use the IAG for a site to site VPN. The IAG is designed as a secure remote access solution using SSL VPN and the ISA instance on it was designed to support the IAG configuration. Once you move outside the IAG configuration, you move outside the design spec of the IAG box. Will it work? Probably. Will MS support you? Probably. Is it the smart or secure thing to do? I don't think so. Use a dedicated ISA firewall or just RRAS on another box for the site to site VPN. HTH, Tom

Page: [1]