Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: ISA 2004 issue

from [Bernard PHILIPS] Network Security [Permanent Link]
Subject: RE: ISA 2004 issue
Date: Wed, 10 May 2006 09:11:31 +0200 
Hi,

Have you try this :

Integrate the vpnc connector on the same segment than isa server
Create a virtual network on isa server with the same adress range than vpnc
192.168.10.0/24
In vpn connection properties on laptop see the option "split tunnelling"
under tcp/ip properties.

I hope it is usefull for you


Bernard PHILIPS
CISA - CISM
IS Architect


-----Message d'origine-----
De : Mollemans, Bart [mailto:bart.mollemans@getronics.com] 
Envoyé : mardi 9 mai 2006 17:23
À : firewalls@securityfocus.com
Objet : ISA 2004 issue

Dear all,

I'm in dire need of some help in a precarious isa-proxy matter.
Allow me to skip to the point;

The network set-up is as follows:
 Internet
    |
  Switch
 / /    \
Vpnc   Isa Server
         |
       Lan Switch

The users who authenticate on the vpnc get 192.168.10.0/24 addresses.
The lan users have the 10.1.0.0/24 range.
The isa server has 10.1.0.1 as address on his internal interface and a
public address on his external interface.

Now The p-vpn users need to use the isa server as IE proxy server. (Yes
they have to, company policy does not allow them to use their laptops
with any other proxy server :(, sigh )

Unfortunately I tried everything but to go crazy, to have the isa server
allow this functionality. Now when a pvpn connected client opens a
connection to the isa-server port 8080 he gets an OPEN but whatever we
try the connection closed instantly...

Any idea's are greatly appreciated!

Kind regards,
Bart
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  what is pay load file in tcp/ip, abhishek mohapatra
Next by Date:  RE: PIX 520 not booting from floppy, failed upgrade, david.byrne
Previous by Thread:  ISA 2004 issue, Mollemans, Bart
Next by Thread:  Re: ISA 2004 issue, Jeff Pricher
Indexes:  [Date] [Thread] [Top] [All Lists]