I want to add a ISA server to our network to control my users access to the internet and to secure our network against intruders.
That is working ok.
The tricky part is that we also have some remote offices which connect to the main office through IPSec VPN.
Today we have a ZyWall 35 in the main office and a ZyWall 5 in the branch offices. The ZyWall 5 is then establishing the IPSec VPN connection to the ZyWall 35.
All our LAN users in the main office is behind the ZyWall 35, and using this as the gateway.
We want to change the gateway for our office users to the ISA server, and still be able to connect to the users behind the VPN in the branch office.
How can we transform our current network setup into a working setup using a ISA in main office and the ZyWall 5 in branch offices as VPN Clients and if necessary the ZyWall 35 in main office?
Today working network:
LAN Network: 192.168.1.0/255.255.240.0
ZyWall 35 LAN IP: 192.168.1.1
ZyWall 35 WAN IP: 80.x.x.20
LAN Network: 192.168.51.0/255.255.240.0
ZyWall 5 LAN IP: 192.168.51.1
I hope I make myself clear, and your are able to give me a solution. If I am unclear in some parts please ask me for more information.