Announcement

Collapse
No announcement yet.

ISA 2006 configuration

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • ISA 2006 configuration

    Hi!

    This is scenario.

    I have two separate locations, location 1 and location 2.

    Location 1 i 2 are connected over MPLS.

    Location 1:
    Only connected to LOCATION 2. Network is 192.168.10.0 and gtw is 192.168.10.220 (MPLS router).

    Location 2:
    Connected to LOCATION 1 (thru MPLS, gtw 192.168.1.220) and internet (thru ISA server 2006, gtw 192.168.1.1). ISA is a VPN server.

    It is W2k8 domain enviroment.

    How to enable users from LOCATION 2 to comunicate with users in LOCATION 1 and preserve connection to internet?
    Last edited by kojo1984; 9th October 2009, 12:09.

  • #2
    Re: ISA 2006 configuration

    site-to-site vpn if this is possible?
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment


    • #3
      Re: ISA 2006 configuration

      Originally posted by Dumber View Post
      site-to-site vpn if this is possible?

      No it is not .

      I have a MPLS that is connecting offices. It is in routing mode. When I configure a client from Location 2 with gateway 192.168.1.220, I can ping clients in LOCATION 1, but client loses connectivity to internet.

      Comment


      • #4
        Re: ISA 2006 configuration

        I think you should connect all the offices with MPLS.
        At one or multiple locations you create some internet connections, place ISA over there and done...

        So someting like this:
        Office 1 --<mlps><mpls>office 3<intenet feed>
        Office 2 --<mpls/
        Marcel
        Technical Consultant
        Netherlands
        http://www.phetios.com
        http://blog.nessus.nl

        MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
        "No matter how secure, there is always the human factor."

        "Enjoy life today, tomorrow may never come."
        "If you're going through hell, keep going. ~Winston Churchill"

        Comment


        • #5
          Re: ISA 2006 configuration

          Originally posted by Dumber View Post
          I think you should connect all the offices with MPLS.
          At one or multiple locations you create some internet connections, place ISA over there and done...

          So someting like this:
          Office 1 --<mlps><mpls>office 3<intenet feed>
          Office 2 --<mpls/
          My offices look like this:
          Office 1 <--> mlps<-->office 2 --><intenet feed>

          Configured Office 2 computers with startup script that adds route for OFFICE 1 network...

          Solved problem with that...


          But I have a place to use upper proposition, so thank you a lot
          Last edited by kojo1984; 11th October 2009, 15:19.

          Comment


          • #6
            Re: ISA 2006 configuration

            And that's the configuration I indeed meant
            Marcel
            Technical Consultant
            Netherlands
            http://www.phetios.com
            http://blog.nessus.nl

            MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
            "No matter how secure, there is always the human factor."

            "Enjoy life today, tomorrow may never come."
            "If you're going through hell, keep going. ~Winston Churchill"

            Comment

            Working...
            X