ISA 2004

Posted on 2006-03-30
Last Modified: 2013-11-16
Ive got all internal clients forwording to ISA 2004 then to the domains-web pages I want them to have access to
now I need to figure out how to connect my stores to this proxy
all store are external small networks with 4 or 5 machines
some have static ip and some don't
how can I get the proxy to allow external clients
I have my router already forwarded to the proxy and i can see the session in monitoring but it does not forword
to the domains I have set up!!
Question by:itguyrg
    LVL 9

    Expert Comment

    Not sure I am following your intent here.

    Are you wanting to allow your External (Internet connected) Branch Locations access to your private network located behind your ISA 2004 server?

    You will need to setup either client to ISA vpn connections or Site to Site VPN connections.

    Please clarify your needs and myself, or someone else on here may be able to get you in the right direction.
    LVL 1

    Author Comment

    Im dont want to give them access to internal resorces
    Im looking to just manage there Site surfing in IE
    with this proxy just like they are internal users
    LVL 51

    Expert Comment

    by:Keith Alabaster
    Some key points here.

    1. ISA is not a router, regardless of what it says in the manual so this element needs to be dealt with by the routers themselves.
    2. Are you running VPN's from your stores to your main office where the ISA is located? If so, what type of VPN are you using pptp or ipsec?
    3. again, if yes, Have you created the VPN locations (in the VPN sections and enabled the client access list/rules?
    4. What are you actually seeing in the monitoring - logging section?
    LVL 1

    Author Comment

    I have one machine in each location that uses the windows VPN (pptp)
    there are 3 or 4 machines that dont have vpn connections they just connect directly to the internet
    the vpn connections are made with a cisco 3030 vpn concentrator

    what I see in the monitoring session is a connection with external marked on it and a ip address of the client that is connecting and I have verified that it is my address

    basically the idea here is it will be kind of a public proxy in a sense
    not sure how safe it is or if it can even be done just testing everything at the moment

    the only other option I have is to set up internet connection sharing with the VPN connection then I should be able to
    route through the proxy

    LVL 51

    Accepted Solution

                                            external Router
                                               |       |
                             ---------------        ---------------
                            |                                            |
                        x.y.19.1                                   x.y.19.2
                       Cisco 3020                             ext firewall
                            |                                            |
     (dmz interface)  -------------  ISA server  --------  (external Interface)
                              --------------- LAN --------------------------

    External users call in on the vpn concentrator. Put a rule on  ISA server that allows traffic from the DMZ (perimeter) to external and control as required.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    What Should I Do With This Threat Intelligence?

    Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

    The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
    This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
    Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    12 Experts available now in Live!

    Get 1:1 Help Now