Improve company productivity with a Business Account.Sign Up

x
?
Solved

Perimeter network access to internal network in a Back firewall configuration (ISA 2006)

Posted on 2008-10-07
5
Medium Priority
?
694 Views
Last Modified: 2008-11-17
Hello,

I have a server in the perimeter network that requires access to the internal network.  Temporarily I want all traffic from this server to the internal network permitted.  I have setup a firewall rule to allow this, but it doesnt seem to work.  I have setup logging and access is denied to the internal network by the default deny rule.  

Do I need to setup any additional Network rules, other then the default rules?
0
Comment
Question by:AC_Nova
  • 3
  • 2
5 Comments
 
LVL 11

Expert Comment

by:EricTViking
ID: 22664416
The sort of rule you probably need is allow all outbound traffic, from server in perimeter network, to internal for all users. That should be the only rule you need.
0
 
LVL 5

Author Comment

by:AC_Nova
ID: 22666870
Thats what I have, but its not working.
0
 
LVL 11

Expert Comment

by:EricTViking
ID: 22694654
Could you describe the topology of your network in a bit more detail? What networks do you have and what are their IP ranges? And where abouts on the network are your servers?
0
 
LVL 5

Author Comment

by:AC_Nova
ID: 22700745
ISA
Ethernet adapter External:
   IP Address. . . . . . . . . . . . : 10.58.9.5
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 10.58.9.1
Ethernet adapter Internal:
   IP Address. . . . . . . . . . . . : 10.59.69.1
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 10.59.57.46
                                       10.59.57.47

server that I wish to access in the dmz
10.59.9.7
255.255.255.0
10.59.9.1

10.58.9.1 is a hardware firewall.

dns servers are internal:

10.59.57.46
 10.59.57.47

0
 
LVL 5

Accepted Solution

by:
AC_Nova earned 0 total points
ID: 22701826
Dont worry I've sorted it.  It was a network route combined with a host add on the cisco kit.

cheers
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Forefront is the brand name for Microsoft's major security product. Forefront covers a number of specific security areas and has 'swallowed' a number of applications under this umbrella including Antigen, ISA Server, the Integrated Access Gateway (t…
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…
Watch the video of Kernel Migrator for SharePoint, which demonstrate the process easily of migration from SharePoint to SharePoint, OneDrive for Business & Google Drive servers, Public Folder to SharePoint, File Server to SharePoint. The tool has va…

584 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question