Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Do we need RRAS to enable Routing on ISA 2006 machine for MultiNIC Config?

Posted on 2009-04-11
6
Medium Priority
?
289 Views
Last Modified: 2013-11-16
Hi,

I am installing ISA 2006 Enterprise Edition on a server. I plan to install COnfiguration Storage Server and ISA Services on the same server . (Is it ok to go?)

I have two NICs on it.

NIC1 10.0.8.x          NAt to a Public IP
NIC2  10.0.25.x       Local LAN

Now one of my friends said that I need to install RRAS in order to enable routing on this.

For now I have not installed ISA or CSS on this server.

It's a windows 2003 SP2 server not yet joined to the domain.

Kindly help me in installing ISA EE correctly please.

Regards.
0
Comment
Question by:Amir4u
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 2000 total points
ID: 24124817
your last sentence is similar to 'Kindly help me carry out brain surgery - via email'.
However, to answer your question, no - you do need to install RRAS separately.
Also, ISA uses the routing provided by the ISA host operating system.
0
 

Author Comment

by:Amir4u
ID: 24124927
Thanx keith for the answer ....

is it possible to ask another question ? regarding how to put DNS in public NIC and Local NIC ? i.e. ISP DNS in Public NIC + Local DNS or just ISP DNS

Also on PRivate NIC - Just Local DNS or no DNS

I will be thankful for this favor ...

Regards.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 24124989
other way round. the internal dns server ip address should be on both the ISA internal AND external nic. The ISP DNS should NOT be placed on ISA Server. The ISP dns server ip addresses should be in the forwarder tab of the internal dns servers.

to put it more clearly, no internal server or workstation should include the ISP dns server ip addresses in their NIC tcpip settings. The ISP dns server addresses should ONLY be in the forwarder tab of the internal dns servers inside the DNS service mmc snapin.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 24124994
just remember to add an access rule for DNS from internal to external
0
 

Author Comment

by:Amir4u
ID: 24125393
thanx,
you wold be amazed to know(or may be not) that our local  DNS server does not forward any request to our ISP DNS. It only resolves locally.

Our exchange server  has local IP which is NAT ed and on it's NIC the ISP DNS address is given.

Our current ISA2000 is working the same way. it is configured with local IP which is NAT ed and it's both DNS are ISP DNS

SO now I am configuring my Edge FIrewall ISA 2006 EE with Multi NIC  I also have a local IP on PUBLIC NIC which is NAT ed  and so shud I not put both DNS as ISP DNS there and for the PRIVATE NIC which has a local IP also from another subnet the local DNS IP?

I hope i didn't make a mess of this explanation..
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 24125929
No - i have explained where it should go already. Put the ISP dns on ISA and you will have trouble. If you want to do it differently then that is your call if you want to ignore best-practice.
0

Featured Post

Enroll in September's Course of the Month

This month’s featured course covers 16 hours of training in installation, management, and deployment of VMware vSphere virtualization environments. It's free for Premium Members, Team Accounts, and Qualified Experts!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So the following errors occurs in 2 ways that I am aware of at this stage, and you receive one of the following error messages: ERROR 1. When trying to save a rule: No Web listener is specified for the Web publishing rule Autodiscovery Publishin…
Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
Suggested Courses

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question