asked on

ISA server 2006, policy for specific computer.

I want to set up a rule for some computer can access the internet, but I cannot.
From Network Objects --> Computers --> New Computers --> (My Computer IP: 10.107.101.41): Allow Access the Internet-----------> I cannot access the internet.

But if I creat that rule and apply for Network Objects --> Networks --> Internal IP Range (10.107.101.1 --> 10.107.101.254) ---------> I can access the internet.

What is my problem?

Please help me.

Suliman Abu Kharroub

What do you have on users tap ( for authentication ) on server?

on the client side, what do you use ? secure nat, proxy or ISA FW client ?

JameMeck

ASKER

Authentication by Domain.

Client by setting system proxy.

Thanks!

Suliman Abu Kharroub

Just we will check basics..

Rule order ?
protocols specified on the rule? http/s...

Please go to monitoring, traffic simulator--> is the traffic allowed ? which rule applied ?

pwindell

If the same PC works fine when you use Internal as the Source,...but does not when you use a Computer Object as the Source (still using the same Rule),...then you are most likely mistakenly using the wrong IP# in the Computer Object.

JameMeck

ASKER

I reconized the problem.

My computer --> Netscreen Firewall ---> ISA server.

This is reason why the ISA server cannot know the IP of my computer, ISA only knows the IP of the Netscreen Firewall.

Any idea for this?
Please help me.

ASKER CERTIFIED SOLUTION

Suliman Abu Kharroub

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

JameMeck

ASKER

Thanks!!