• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

General Implementation without nat, User need to access the internet with his domain username

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> General Implementation without nat, User need to access the internet with his domain username Page: [1]
Login
Message << Older Topic   Newer Topic >>
General Implementation without nat, User need to access... - 24.Mar.2011 11:41:15 AM   
umarsr

 

Posts: 23
Joined: 6.Aug.2009
Status: offline
Dear All,

How i can implement the TMG with out NAT. The user only accces the internet with its usename and the Passwrod of Domain.
I need to give the specific use of rights for the different Groups. For Examples.

Mangagers(Allo Every Thing)
Medium Users(Messengers restriction only)
General Users (Only some of the sites, Videos not allowed, messengers not allowed)
and Gusets(now access to Network only access the internet)

At the end i need to take the reports for Each User against the usage of the internet.

Please can someone guide the through out the scenarios.

Muhammad Umar Rasul
MIS Administrator
PGIS
Al-Khobar, Saudi Arabia
Post #: 1
RE: General Implementation without nat, User need to ac... - 24.Mar.2011 3:59:10 PM   
pwindell

 

Posts: 2244
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
You can only do that in a Back-to-Back DMZ scenario when it is the "Back Firewall".

You just change the Network Relationship from NAT'ed to Routed.  However it will still proxy the traffic through the Web Proxy Server.

If it is being run as a Single-Nic-Web-Caching-only-Server then it was never NATed to begin with,...but would always be proxied.

_____________________________

Phillip Windell

(in reply to umarsr)
Post #: 2
RE: General Implementation without nat, User need to ac... - 24.Mar.2011 5:40:28 PM   
umarsr

 

Posts: 23
Joined: 6.Aug.2009
Status: offline
Please can you explain me in some simple words, i will be very thankful to you.




(in reply to pwindell)
Post #: 3
RE: General Implementation without nat, User need to ac... - 24.Mar.2011 6:18:32 PM   
pwindell

 

Posts: 2244
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
It is not possible to say it any simpler.

It seems that you just simply do not know the product well enough to use it.

Here are links to material that can help you learn the product.  That is the best I know to do.  Most things for ISA2004 and 2006 will also apply to TMG.

Technet Library
ISA2004
http://technet.microsoft.com/en-us/library/cc302436(TechNet.10).aspx
ISA2006
http://technet.microsoft.com/en-us/library/bb898433(TechNet.10).aspx
What is the ISA 2006 Firewall?
http://www.isaserver.org/articles/What-is-ISA-2006-Firewall.html
Internal Client Concepts in ISA Server 2006
http://technet.microsoft.com/en-us/library/bb794762.aspx
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html



_____________________________

Phillip Windell

(in reply to umarsr)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> General Implementation without nat, User need to access the internet with his domain username Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts