• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

2 domains and 1 isa server

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> Network Infrastructure >> 2 domains and 1 isa server Page: [1]
Login
Message << Older Topic   Newer Topic >>
2 domains and 1 isa server - 1.Sep.2004 5:06:00 PM   
racy

 

Posts: 23
Joined: 1.Sep.2004
Status: offline
Hi Everybody !

I have 2 domains (they aren't in the same namespace) and 1 isa server 2004 with 3 network cards (1 for internet, 1 for each domain).

I would like to control the internet access for each domain by users or groups.

Do I have to create a trust relationship for the 2 domains and join the isa server to a domain ?
Is that the only way ?

Best Regards

Racy
Post #: 1
RE: 2 domains and 1 isa server - 1.Sep.2004 5:32:00 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Racy,

Yes. Or, if you're just wanted strong user/group based access control for Web connections, then you can use RADIUS for the Web Proxy clients.

HTH,
Tom

(in reply to racy)
Post #: 2
RE: 2 domains and 1 isa server - 1.Sep.2004 7:44:00 PM   
racy

 

Posts: 23
Joined: 1.Sep.2004
Status: offline
Thank You for your reply !

If I create a trust relationship , Which protocols do I have to enable in Isa Server ?

Best Regards

Racy

(in reply to racy)
Post #: 3
RE: 2 domains and 1 isa server - 2.Sep.2004 1:36:00 AM   
grinn253

 

Posts: 76
Joined: 12.Jul.2004
From: Seattle
Status: offline
quote:
Originally posted by racy:
Thank You for your reply !

If I create a trust relationship , Which protocols do I have to enable in Isa Server ?

Best Regards

Racy

I too am curious which protocols are needed for trusts relationships to other domains.

Thanks!
Edgardo

(in reply to racy)
Post #: 4
RE: 2 domains and 1 isa server - 3.Sep.2004 2:00:00 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hey guys,

If you check the chapter on the FE/BE configuration in the ISA/Exchange kit for the 2004 ISA firewall, you'll see the protocols required for domain communications.

HTH,
Tom

(in reply to racy)
Post #: 5
RE: 2 domains and 1 isa server - 5.Sep.2004 2:12:00 PM   
rls

 

Posts: 7
Joined: 26.Aug.2004
Status: offline
Hi Tom,

What¦s means FE/BE and where i found it. I¦ve the same enverioment with 2 domains, they aren't in the same namespace and isa with 3 nic

Best Regards

Rls

(in reply to racy)
Post #: 6
RE: 2 domains and 1 isa server - 6.Sep.2004 5:12:00 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi RLS,

I'm publishing an article on extending the domain into the DMZ today, so keep an eye out for that.

HTH,
Tom

(in reply to racy)
Post #: 7
RE: 2 domains and 1 isa server - 6.Sep.2004 6:45:00 PM   
racy

 

Posts: 23
Joined: 1.Sep.2004
Status: offline
Hi Tom,

I used ethereal and I found the follows ports in the "trust" communication between them:

53 UDP DNS
636 TCP ???
88 TCP UDP ???
3268 TCP ???
35 TCP RPC
445 TCP SMB
3269 TCP ???
389 TCP UDP ???

Best Regards

Racy

(in reply to racy)
Post #: 8
RE: 2 domains and 1 isa server - 7.Sep.2004 2:24:00 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Racy,

The article is published. Check the front page.

HTH,
Tom

(in reply to racy)
Post #: 9
RE: 2 domains and 1 isa server - 8.Sep.2004 1:57:00 AM   
grinn253

 

Posts: 76
Joined: 12.Jul.2004
From: Seattle
Status: offline
Maybe this article still applies?
Microsoft Site

(in reply to racy)
Post #: 10

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> Network Infrastructure >> 2 domains and 1 isa server Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts