• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

B2B with a 3rd Party Firewall Terminating Remote Site to Site VPNs

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 Firewall] >> DMZ >> B2B with a 3rd Party Firewall Terminating Remote Site to Site VPNs Page: [1]
Login
Message << Older Topic   Newer Topic >>
B2B with a 3rd Party Firewall Terminating Remote Site t... - 4.Sep.2003 1:19:00 AM   
jim.gowans

 

Posts: 1
Joined: 24.Aug.2003
From: Jersey, Channel Islands
Status: offline
On our site we have a Cisco 837 Border Router with two site to site VPNs terminating on it. We have an ISA server behind this in a B2B configuration. All Internet traffic is push from the Cisco 837 to the External Interface of the ISA Server. We therefore have both trusted and untrusted site traffic pointing at the external interface of the ISA Server.
Can anyone tell me what would be the best way to allow traffic from the two site to site VPNs through the ISA Server on to the Internal Network so that our two remote sites can access all the resources on the Internal Network.
Post #: 1
RE: B2B with a 3rd Party Firewall Terminating Remote Si... - 5.Sep.2003 11:01:00 PM   
spouseele

 

Posts: 12830
Joined: 1.Jun.2001
From: Belgium
Status: offline
Hi Jim,

because the VPN tunnels are terminated external to ISA server, ISA will consider all inbound traffic as untrusted. So, I think your configuration will not work.

In my opinion the best way is to terminate the VPN tunnels on the inner ISA server. To achieve that, the inner ISA server *must* run on W2003 and you should use L2TP/IPSec with the NAT-T feature as VPN protocol.

HTH,
Stefaan

(in reply to jim.gowans)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 Firewall] >> DMZ >> B2B with a 3rd Party Firewall Terminating Remote Site to Site VPNs Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts