Can I use a guest wireless router with ISA on a separate network adapter?

Posted on 2008-01-26
Medium Priority
Last Modified: 2013-11-09
Hello experts, I need advice to use isa with a wireless access point or router.

I have an ISA 2006 firewall with 4 network adapters.  1 Internet, 1 Lan, and 1 wireless being used.  I'd like to give internet access to guests in our office bypassing our network using the ISA firewall configuration and rules.  Can I put the wireless on 1 adapter and route the wireless users directly to the internet network?  What network rules do I need and what isa policy is appropriate?

The isa firewall is on 1 machine and my dc is a sbs server on a different machine.  My first attempt with the configuration caused rpc errors that killed my vpn and terminal service authentication.
Question by:wessir
LVL 51

Accepted Solution

Keith Alabaster earned 2000 total points
ID: 20753589
Certainly can be done - its common practice

Not sure how you would be getting ip addresses for these users?
In ISA you would create a new network from the gui on a 3rd nic (like a DMZ)
You will decide if these users will route or NAT to the Internet (default is route - suggest you change this to NAT but will depend on the addresses they are picking up).
You'll add the new ip address range that will be used on that network
You'll amend the LAT tables to make sure this address range is NOT included in the LAts of the other networks you have defined within the ISA gui. (none must overlap)
you'll add access rules in the firewall policy from new_network_name to external allowing the protocols you want and you'll set that rule to All Users


Author Closing Comment

ID: 31425341
Thanks, I will try it soon.

Featured Post

2018 Annual Membership Survey

Here at Experts Exchange, we strive to give members the best experience. Help us improve the site by taking this survey today! (Bonus: Be entered to win a great tech prize for participating!)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ISA Server detected routes through the network adapter LAN that do not correlate with the network to which this network adapter belongs What does this mean and how can one go about correcting it? In simple terms, this error message indicates t…
In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
Free Data Recovery software is an advanced solution from Kernel Tools to recover data and files such as documents, emails, database, media and pictures, etc. It supports recovery from physical & logical drive after a hard disk crash, accidental/inte…
If you are looking for an automated solution for backup single or multiple Office 365 user mailboxes to Outlook data file, then you can use Kernel Office 365 Backup & Restore tool. Go through the video to check out the steps to backup single or mult…
Suggested Courses

600 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question