Solved

Perimeter network access to internal network in a Back firewall configuration (ISA 2006)

Posted on 2008-10-07
5
662 Views
Last Modified: 2008-11-17
Hello,

I have a server in the perimeter network that requires access to the internal network.  Temporarily I want all traffic from this server to the internal network permitted.  I have setup a firewall rule to allow this, but it doesnt seem to work.  I have setup logging and access is denied to the internal network by the default deny rule.  

Do I need to setup any additional Network rules, other then the default rules?
0
Comment
Question by:AC_Nova
  • 3
  • 2
5 Comments
 
LVL 11

Expert Comment

by:EricTViking
ID: 22664416
The sort of rule you probably need is allow all outbound traffic, from server in perimeter network, to internal for all users. That should be the only rule you need.
0
 
LVL 5

Author Comment

by:AC_Nova
ID: 22666870
Thats what I have, but its not working.
0
 
LVL 11

Expert Comment

by:EricTViking
ID: 22694654
Could you describe the topology of your network in a bit more detail? What networks do you have and what are their IP ranges? And where abouts on the network are your servers?
0
 
LVL 5

Author Comment

by:AC_Nova
ID: 22700745
ISA
Ethernet adapter External:
   IP Address. . . . . . . . . . . . : 10.58.9.5
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 10.58.9.1
Ethernet adapter Internal:
   IP Address. . . . . . . . . . . . : 10.59.69.1
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 10.59.57.46
                                       10.59.57.47

server that I wish to access in the dmz
10.59.9.7
255.255.255.0
10.59.9.1

10.58.9.1 is a hardware firewall.

dns servers are internal:

10.59.57.46
 10.59.57.47

0
 
LVL 5

Accepted Solution

by:
AC_Nova earned 0 total points
ID: 22701826
Dont worry I've sorted it.  It was a network route combined with a host add on the cisco kit.

cheers
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
WMI on TMG 2010 5 1,981
TMG firewall service unable to start due to malware inspection lincense expiration 3 1,127
Lync 2013 Edge Without DMZ 6 1,407
How to block online streaming via TMG2010 ? 2 134
ISA Server detected routes through the network adapter LAN that do not correlate with the network to which this network adapter belongs What does this mean and how can one go about correcting it? In simple terms, this error message indicates t…
Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question