I have an ISA 2006 server in a DMZ behind a PIX firewall.
The ISA server has a private IP assigned to it's NIC.
The PIX is NATing the private IP behind a public IP.
Everything works perfect how it should.
The ISA server is HTTPS publishing a LINUX APACHE server
When scanning the PUBLIC IP from the OUTSIDE of the network (via Internet) with Nessus, the scanner is able to determine the PRIVATE IP address of the ISA SERVER (not the published web server).
I've tested adjusting the firewall to NAT directly to the Apache Web server. The same scan does NOT reveal the IP address. This is definately something that the ISA 2006 server is leaking.
I have been unable to find any security procedures/fixes to stop this problem.
The fixes I've found for this type problem are related to IIS, but NOT ISA.