ISA with DMZ - Unable to connect in the internet but able to ping the ISA DMZ adapter. (Full Version)

All Forums >> [ISA Server 2004 General ] >> ISA 2004 SBS



Message


archerv -> ISA with DMZ - Unable to connect in the internet but able to ping the ISA DMZ adapter. (29.Feb.2012 4:00:29 PM)

Hi,

I have ISA 2004 with Trihomed configuration (3 Ethernet card: EXTERNAL,DMZ,INTERNAL) but at this stage I am trying to solve my issue with my DMZ as I cannot connect to Internet but I able to ping the ISA-DMZ adapter. My configuration as follows:

======================
ISA HOST CONFIGURATION [3 NICs]
======================
EXTERNAL
IP: 192.168.1.60
Subnet: 255.255.255.0
Gateway: 192.168.1.1
DNS: {ISP DNS}

ISA-DMZ
IP: 192.168.2.1
Subnet: 255.255.255.0
Gateway: none
DNS: none

ISA-LAN
IP: 192.168.3.1
Subnet: 255.255.255.0
Gateway: none
DNS: none

======================
DMZ HOST CONFIGURATION [1 NIC]
======================
DMZ-ISA
IP: 192.168.2.2
Subnet: 255.255.255.0
Gateway: 192.168.2.1

======================
INTERNAL HOST CONFIGURATION [1 NIC]
======================
LAN-ISA
IP: 192.168.3.2
Subnet: 255.255.255.0
Gateway: 192.168.3.1

In the ISA Host, I add 2 additional routing
>> Route p add 192.168.2.0 MASK 255.255.255.0 192.168.2.1
>> Route p add 192.168.3.0 MASK 255.255.255.0 192.168.3.1

During my testing I able to ping the following IP
192.168.2.1, 192.168.3.1, 192.168.1.60
and unable to ping the following IP
192.168.1.1 (which I think make sense) and 8.8.8.8 which is google dns service.

The ISA Monitoring also did not show any packets from DMZ when I try to browse the internet
but If I do ping from DNZ to ISA the packet shows.

Please let me know if you notice some problem with my configuration which I highly suspect there are.




Page: [1]