Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
outgoing ip from snat client
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
outgoing ip from snat client - 12.Mar.2004 12:19:00 PM
|
|
|
nikmac
Posts: 28
Joined: 28.Mar.2003
From: greece
Status: offline
|
Hi all
I have a question regarding the IP-adress, used for outbound communication with the new ISA.The old ISA always used the first IP-adress assigned to the external NIC for outbound traffic. With
new isa is possible to define outgoing ip address
for some clients.
I was publish one host from DMZ (10.10.10.2) in ip of external interface in ISA (10.10.20.2) using NAT from external access, and everything is
working fine when make a request from outside host (in sniffer i was see the DMZ host 10.10.20.2).
However when i make a request from DMZ host
to outside host always i was take the source address of first ip address of ISA (10.10.20.1)
According Tom's answer in previous post a was
make a routing rule from dmz host to external
ip address of isa.
DMZ-10.10.10.2 -> EXTERNAL 10.10.20.2 = ROUTE
But with no luck, (continue to appear as source address the 10.10.20.1) any suggestions?
Thanks nikos
|
|
|
|
|
RE: outgoing ip from snat client - 12.Mar.2004 12:45:00 PM
|
|
|
tshinder
Posts: 47439
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Nikos,
You'll need to use public addresses on the clients you want to have static addresses on the external interface, and then route between those addresses.
For all practical purposes, its just about the same in ISA 2004 and ISA2000 -- you will have to use the same IP address on the external interface for outbound communications.
HTH,
Tom
|
|
|
|
|
RE: outgoing ip from snat client - 12.Mar.2004 1:21:00 PM
|
|
|
nikmac
Posts: 28
Joined: 28.Mar.2003
From: greece
Status: offline
|
First of all thanks Tom for your replay
I think is doesn't matter what ip (priv or public)
i have select for my lab. I was make the necessarily routes for my test networks.
But for test i was change the ip address in
external interface of isa to 100.100.20.1
and all of bind ip addresses(2,3,4,5).
I was make a route roule from DMZ host to External
ip address (10.10.10.2 -> 100.100.20.2 = route)
bu i was take the same result.
You say that to define an outgoing ip address
from one host, this host must have public ip
address ?
|
|
|
|
|
RE: outgoing ip from snat client - 15.Mar.2004 3:58:00 PM
|
|
|
tshinder
Posts: 47439
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Nik,
Yes, because you can't route from a private address to a public address.
HTH,
Tom
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
