|
excossack -> OMA/ActiveSync publishing (7.Jul.2008 10:47:25 AM)
|
Hi All.
We started off with one NLB (IP x.x.x.19) address for OWA, which was assigned an external IP address on the Firewall, and a DNS name assigned. This used SecurID as authentication. This works fine.
We wanted to publish OMA/ActiveSync as well. We came across the problem of ISA not being able to fail back the authentication type. So we purchased a 2nd dual port NIC for each server.
On this NIC we used 1 port from each and connected them to same switch as the other existing NLB'd NICs.
We NLB'd the new NICs (IP x.x.x.41) and configured a listener with only OMA and ActiveSync paths, and used Basic Auth.
We got the NAT added to the FW and tried connecting to it from outside.
After a bit we get a page cannot be displayed error inside IE
In the monitoring logs on ISA we can see the packet was dropped due to it being Spoofed.
Question. What am i doing wrong and what needs changing?
Any questions please ask.
|
|
|
|