Solved

3 Network Cards in ISA Server 2006

Posted on 2008-06-16
4
441 Views
Last Modified: 2008-11-17
Hello,

I have ISA Server 2006 in Production.
Config.
Internal Network : 192.168.10.0 255.255.255.0 [Internal LAN]
External Network: 212.xxx.xxx.xxx [Leased Line] [This NIC has the gateway and DNS]
Used for VPN, Outlook Web Publishing,Proxy and also allows SMTP traffic.

The ISA Server box has 3rd network card which I want to use for Internet Browsing [We have seperate high speed connection from different ISP]. Reason being, interent browsing will not hog all the leased line and yet do the web filtering.

Can I just configure it with one of the INTERNAL IP addresses ?
If YES then
What about gateway and DNS Server ???
Also, I understand that I will have to configure the access rules for HTTP and HTTPS to go from InternetBrowsing [3rd NIC].

Any advice / better idea is welcome.

Extra Info. [I do have couple of internet facing IP add. from the ISP for the 3rd NIC OR I can make it sit behind a Draytek router with an internal IP, this is where I am confused. ]

Thanks
RC
0
Comment
Question by:RonCairns
  • 2
4 Comments
 
LVL 19

Accepted Solution

by:
Stephen Manderson earned 500 total points
ID: 21795958
Hi there,

Right just to be sure I have got your question, You have 2 lines with internet access you want to keep one dedicated for VPN... OWA atc..

This is something you cannot do via ISA. You will need to look at geting a dual wan router with either load balancing or traffic shaping. and will give you something hat would look like this

----------- Net1 ------ Modem1 ----- Wan Port 1
                                                   Dual Wan Router ---------- ISA ----------- Internal
----------- Net1 ------ Modem2 ----- Wan Port 2

In short the 3rd NIC card would only be useful for a DMZ on the ISA box.

Regards
Steve
0
 
LVL 19

Expert Comment

by:Stephen Manderson
ID: 21795963
that second line should be net 2 :P
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Forefront is the brand name for Microsoft's major security product. Forefront covers a number of specific security areas and has 'swallowed' a number of applications under this umbrella including Antigen, ISA Server, the Integrated Access Gateway (t…
Forefront Threat Management Gateway 2010 or FTMG comes with some very neat troubleshooting tools built-in when trying to identify what is actually happening behind the scenes within the product when traffic is passing through its interfaces. To the …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question