Announcement

Collapse
No announcement yet.

multiple geteways on isa in front of Cisco router

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • multiple geteways on isa in front of Cisco router

    Hi all
    i have two subnets as follow


    DSL modem router --->Isa 2006 TWO NICs (AS APROXY )---->CISCO SWITCH-(DC-DNS-DHCP)--->CISCO ROUTER 2800---->SWITCH---->WORKSTATIONS

    One for the servers subnet and the internal interface of the isa
    2nd is for the work stations

    i want the work stations to use the internet
    from the work station subnet i can ping all servers except the isa 2006
    the problem is tha isa has two NICs the external have the DSL modem router IP as default gateway
    and for the internal of the isa i know that i should make the 2800 router interface as the default getaway
    but this is not acceptable bu the isa

    so what can i do ?
    note im using the isa 2006 as avirtual machin in windows server 2008 r2 -hyper V

  • #2
    Re: multiple geteways on isa in front of Cisco router

    Most devices doens't support multiple default gateways and if you understand the principle of a default gateway, you'll understand why.

    Wikipedia: A default gateway is the node on the computer network that the network software uses when an IP address does not match any other routes in the routing table.

    This might give you a little start how you should configure your nics on the ISA machine.
    http://blog.nessus.nl/416/how-you-sh...r-isa-and-tmg/

    But to answer all you're questions:

    i want the work stations to use the internet
    from the work station subnet i can ping all servers except the isa 2006
    Well all you're workstations might be able to access the internet when you setup you're routing correctly.
    True, you cannot ping ISA per default unless you allow it in the system policies. But who cares? Note, it's a firewall in the first place.
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment

    Working...
    X