It seems that servers that are on my network are bypassing my newly installed ISA server and going straight to the host. However from my ISA server I can see in the logs that it authenticates and is allowed by my server.
I have made policies that are very general, such as allow all HTTP users from the internal network to anywhere, thjis is setup for all users. Although I still dont see anything in the logs besides the traffic from the local host and various Net Bios stuff.
If anyone has any suggestions as what I should look at to try and have the ISA server mediate traffic from other servers, that would be awesome. Let me know if you need me to supply more information as well.
Are the clients configured to use the ISA server as their proxy server?
_____________________________
Marcel Netherlands
MCTS, MCITP (SA,EA) MCP, MCSA:Security, MCSE:Security, CCNA, CCSA, CCSE, CCSE+ No matter how secure, there is always the human factor. http://www.phetios.com/
Are the clients configured to use the ISA server as their proxy server?
Is making a firewall policy the same thing? I made an access rule that applies to our sharepoint site, so shouldnt the ISA manage all the traffic going to that site from now on? Our Sharepoint site is goiing to have thousands of users, so configuring the proxy for each user would not be ideal. Is this the correct way of thinking?
I'm not sure if I am doing a good job of explaining my issue. I tried to put in a layout of what I'm looking to happen.
Right now the only traffic that goes to Sharepoint VIA the ISA is when I try to access the Sharepoint from the ISA server itself. We would like to have clients within our network and on different subnets be able to access Sharepoint via the ISA so they wont ahve to enter their password multiple times, but right now it only works from the server itself
We really arent looking for the ISA to do anything else but this. Do you think we need two network cards enabled? Or is the proxy necessary? Thanks for your help
My publishing rule Allows HTTP From internal network to the sharepoint server, I set all users. I test the rule and it completes successfully. Let me know if you need more info, thanks!
I've enabled WPAD, but it seems that most of the network now travels through the ISA server. Shouldnt only the traffic that goes to my published site go through my ISA server?
Posts: 3472
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,
when ISA is configured in single-NIC mode it handles only http, https and ftp protocols.
All the traffic using these protocols will pass through ISA. Because ISA is been used as your proxy server. It isnīt that what you want in the first place?
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA 2006 Firewall] >> General >> ISA bypassed by everything but local host 
ISA bypassed by everything but local host - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread