Expiring Today—Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Setting Up ISA Behind ADSL

Posted on 2009-04-13
3
Medium Priority
?
1,029 Views
Last Modified: 2013-12-14
Hi. I'm setting up a ISA 2006 Enterprise server behind my DSL router. We host several websites and a few FTP servers.  I have a static IP. I'm wanting to see if I have the right idea for this to work.

Plan
Set the router to transparent bride. Give the WAN NIC of ISA my Static IP Address.
Problem - Still need to authenticate somehow with my ISP - Qwest

Plan 2
Keep the router as is currently
Set ISA in the DMZ
Forward all traffic to ISA and delegate from there.

Which is better? Is there another way to do this? Any and all advice is greatly appreciated!
0
Comment
Question by:dsmjeff
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 7

Expert Comment

by:hau_it
ID: 24145216
If i was you i would do the following.

1 setup the ISA in SBS 2003 server
2 create a domain
3 Configure the ISA with two NIC one for the domain and one attached to the DSL router
4 Create NAT in the DSL router for the web and ftp services
5 Publish the web sites and ftp to the ISA

It s not easy. there are many things to do but it is an interesting task.

Dimitris
0
 

Author Comment

by:dsmjeff
ID: 24147609
Thanks.

We already have the domain setup on a Server 2003 box. We do have a copy of SBS 2003, but only use it for Exchange and one of the DC's. I'd prefer not to make it my firewall as well, just for the fact that if that box fails, I'm in deep trouble!! :)

On your number 4, your saying just punch holes through for the current FTP/Web sites and push them all to ISA and publish through there?

How would that work? For example, I'm having issues right now trying to set the WAN NIC to my public IP. I only have one static, is that enough? Do I just set my routers internal IP Structure to be ISA's WAN NIC?

Thanks!
0
 
LVL 7

Accepted Solution

by:
hau_it earned 2000 total points
ID: 24147760
In every aspect you have a single point of failure. Either it is the router or the server or the ISA.
The ISA config it is very easy to export and import it again in case of a failure

Now in number 4 what i am saying is that in your router you will do static NAT to your inside IP address. If it is one server that hosts the web and ftp sites its ok. But if they are more then you need more IPs.
This static NAT will point to the external IP of the ISA (the one not in your domain).
All of the websites will be published to the ISA server
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Want to learn how to record your desktop screen without having to use an outside camera. Click on this video and learn how to use the cool google extension called "Screencastify"! Step 1: Open a new google tab Step 2: Go to the left hand upper corn…
Suggested Courses

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question