I am installing ISA 2006 EE and have already created 2 CSS server and 1 ISA server. I just created the 2nd ISA Server and am struggling with the Intra Array Communication.
Each server has 3 NIC's Internal: IP 10.1.1.240 & 10.1.1.243 NLB: 172.16.255.1 & 172.16.255.3 External: xx.xxx.xx.180 & xx.xxx.xx.182
Which card is used for Intra-array communication? They are current set for the Internal, I would have thought that the NLB NIC's would be used.
Also, do I need to turn on Microsoft's Network Load Balancing component?
Thanks Jason, I'll read that tonight. Just a point though - I've tried changing the intra-array communication IP address to my NLB card and get the following message
"DHCP cannot be used to assign IP addresses to VPN clients or remote endpoint servers on multiple-server arrays. The error occurred on object 'VpnConfig' of class 'VPN Configuration' in the scope of array 'Relate Edge Array'."
How does VPN config tie into the Intra-array communication?
Posts: 4663
Joined: 30.Jul.2002
From: United Kingdom
Status: offline
quote:
ORIGINAL: teejayuu
Thanks Jason, I'll read that tonight. Just a point though - I've tried changing the intra-array communication IP address to my NLB card and get the following message
"DHCP cannot be used to assign IP addresses to VPN clients or remote endpoint servers on multiple-server arrays. The error occurred on object 'VpnConfig' of class 'VPN Configuration' in the scope of array 'Relate Edge Array'."
How does VPN config tie into the Intra-array communication?
It sounds like you'd enabled your VPN or configured it incorrectly and its not related to the intra-array setup at all...
Didn't get much of a chance to read up last night as football was on - probably should comment on another forum about that.
Anyway, have read up both your blog/associated links today as well as the text I am using and I think I see where my confusion lies.
quote:
Each server has 3 NIC's Internal: IP 10.1.1.240 & 10.1.1.243 NLB: 172.16.255.1 & 172.16.255.3 External: xx.xxx.xx.180 & xx.xxx.xx.182
The text I am following has an NLB Network on 172.16.255/.0/24, whereas if should read:
quote:
Each server has 3 NIC's Internal: IP 10.1.1.240 & 10.1.1.243 Intra-Array Communication: 172.16.255.1 & 172.16.255.3 External: xx.xxx.xx.180 & xx.xxx.xx.182
The NLB is on the Internal and External networks if I read everything right.
I have got it all set up now, but one server is working fine (ISA3) and the other (ISA) has an error message 'Unable to retrieve data from :ISA3". I think this have something to do with the Intra-Array communication.
Are the intra-array addresses set for the DIPs of both firewalls?
Is name resolution configured so that each firewall in the array is resolved to it's internal address and that the intra-array addresses are also resolvable?
Jason, both CSS roles are not installed on array members but on seperate servers. I have just checked and both are now up and running - now to get the rules working
Thanks to both you and Tom
< Message edited by teejayuu -- 3.Apr.2009 3:28:45 AM >
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA 2006 General] >> General >> Intra-array communications 
Intra-array communications - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread