JameMeck
asked on
ISA server 2006, policy for specific computer.
I want to set up a rule for some computer can access the internet, but I cannot.
From Network Objects --> Computers --> New Computers --> (My Computer IP: 10.107.101.41): Allow Access the Internet-----------> I cannot access the internet.
But if I creat that rule and apply for Network Objects --> Networks --> Internal IP Range (10.107.101.1 --> 10.107.101.254) ---------> I can access the internet.
What is my problem?
Please help me.
From Network Objects --> Computers --> New Computers --> (My Computer IP: 10.107.101.41): Allow Access the Internet-----------> I cannot access the internet.
But if I creat that rule and apply for Network Objects --> Networks --> Internal IP Range (10.107.101.1 --> 10.107.101.254) ---------> I can access the internet.
What is my problem?
Please help me.
ASKER
Authentication by Domain.
Client by setting system proxy.
Thanks!
Client by setting system proxy.
Thanks!
Just we will check basics..
Rule order ?
protocols specified on the rule? http/s...
Please go to monitoring, traffic simulator--> is the traffic allowed ? which rule applied ?
Rule order ?
protocols specified on the rule? http/s...
Please go to monitoring, traffic simulator--> is the traffic allowed ? which rule applied ?
If the same PC works fine when you use Internal as the Source,...but does not when you use a Computer Object as the Source (still using the same Rule),...then you are most likely mistakenly using the wrong IP# in the Computer Object.
ASKER
I reconized the problem.
My computer --> Netscreen Firewall ---> ISA server.
This is reason why the ISA server cannot know the IP of my computer, ISA only knows the IP of the Netscreen Firewall.
Any idea for this?
Please help me.
My computer --> Netscreen Firewall ---> ISA server.
This is reason why the ISA server cannot know the IP of my computer, ISA only knows the IP of the Netscreen Firewall.
Any idea for this?
Please help me.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks!!
on the client side, what do you use ? secure nat, proxy or ISA FW client ?