Solved

Mixing ISA2004 and Linksys WRT54G Wireless Routers?

Posted on 2008-06-12
4
572 Views
Last Modified: 2008-06-15
I want to set up a site-to-site VPN from someone's home to their office.  At their home, they do NOT have a static ip address and I've given up trying to make ISA2004 get a DHCP-provided address from the Cable Modem.  (I'm not even interested in trying that any more.)

So here's what I want to do (in the home):

CableModem
   |
Linksys Router Internet Port (DHCP-provided address from cable company)
(Linksys Router Wireless Disabled, DHCP Server Disabled)
Linksys Router Ethernet Port, Static Address, 192.168.3.1
   |
ISA2004 Server (on Windows 2000 Server), Outside Nic, Static Address, 192.168.3.10
ISA2004 Server (on Windows 2000 Server), Inside Nic, Static Address, 192.168.4.10
   |
Linksys Router Internet Port, Static Address, 192.168.4.1
Linksys Router Wireless&Ethernet clients, DHCP address given out to clients, 192.168.2.x
   |   |   |   |   |
client computers (in the home)

My problem is this link:
ISA2004 Server (on Windows 2000 Server), Inside Nic, Static Address, 192.168.4.10
   |
Linksys Router Internet Port, Static Address, 192.168.4.1

***   Do I need a crossover cable for this link?   ***

Right now, they are not talking to each other over that connection.

(I just happen to have 2 wireless routers, not using the wireless on the "outside" router.)
0
Comment
Question by:gateguard
  • 2
  • 2
4 Comments
 
LVL 11

Expert Comment

by:EricTViking
Comment Utility
Here's my suggestion (inline within asterisks)....

CableModem
   |
Linksys Router Internet Port (DHCP-provided address from cable company)
(Linksys Router Wireless Disabled, DHCP Server Disabled)
Linksys Router Ethernet Port, Static Address, 192.168.3.1
*******************************************************************
**********Setup DMZ on linksys to forward all traffic to 192.168.3.10***********
*******************************************************************
   |
ISA2004 Server (on Windows 2000 Server), Outside Nic, Static Address, 192.168.3.10
ISA2004 Server (on Windows 2000 Server), Inside Nic, Static Address, 192.168.4.10
*************************************************************************
**********Bin the internal Linksys and use ISA as a NAT router on the inside***********
**********        Also configure Server 2000 as DHCP and DNS server             ***********
*************************************************************************
client computers (in the home)


Hope that makes sense?
0
 

Author Comment

by:gateguard
Comment Utility
But I want a wireless router on the inside network.

Let me ask you this, do you think the Internet Port of a Linksys Wireless Router and a Nic card on a PC must be connected with a crossover cable?
0
 
LVL 11

Accepted Solution

by:
EricTViking earned 500 total points
Comment Utility
Sorry I missed the WiFi point ;-)

I don't know whether you would need a crossover - my guess would be not, but the easiest way to find out would be to try one. Alternatively try connecting the router internet port and the ISA internal nic via a switch or hub if you have one spare. If it starts working via a switch then you will need a crossover.

However why not connect the LAN side of the WiFi router to the internal NIC of the ISA server, use the server to provide DHCP and DNS and then use the internal router to give you WiFi connectivity.

At the moment your solution has 3 routers in series - which is a whole lot of NAT making VPN anything difficult. If you have the external router set as a DMZ throwing everything at the external NIC os ISA server, and use ISA server as a NAT router with the internal WiFi connected via it's LAN port you will have a single router to configure instead of three.
0
 

Author Comment

by:gateguard
Comment Utility
You bring up some interesting points.  I'm going to take a look at that.

This whole thing brings me back to the one point I gave up on, getting the external nic card on the isa 2004 server to get a dhcp-provided address from the cable modem.  If only it could do that.  If only.

0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Forefront is the brand name for Microsoft's major security product. Forefront covers a number of specific security areas and has 'swallowed' a number of applications under this umbrella including Antigen, ISA Server, the Integrated Access Gateway (t…
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now