I would like to try and help you visualise what I am about to suggest, so here is my network:
10.0.0.2 - Server 1 PDC - (has ISA server running)
10.0.0.5 - VPN Router
10.0.1.2 - Server 2 - Global Catalog Server.
10.0.1.5 - VPN Router
This is all set up and running fine. Users at Site 1, connect to the web using ISA server as their web proxy and use their gateway being the router.
ipconfig of a workstation on 10.0.0.0 network.
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
IP Address. . . . . . . . . . . . : 10.0.0.4
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 10.0.0.5
So, here we are. All VPN traffic goes through the router and all web goes through ISA and then the router. This is the same for Site 2.
SDSL is being installed to speed up VPN traffic, strictly. SDSL Routers are going to be 10.0.0.240/10.0.1.240 (Site1/Site2)
At this point, I am not sure how to configure this.
I would like all web traffic to go out via ISA proxy, so it can all be monitored etc.
To me, it looks impossible. Mainly because all users at Site 2, need to go via the VPN to get web access. Is there a way to configure that to only allow 'authentication' to go via the VPN and all actual 'data transfer' to go via their local router?
Hmm, I think I need to be more clear!
2 Sites, 1 ISA Server.
1 SDSL connection strictly for VPN data.
1 ADSL connection strictly for web access.
All help is GREATLY appreciated!