Hey,
Klein vraagje , ik weet niet dadelijk of jullie me gaan kunnen helpen. Ik heb de probleemomschrijving even in het engels gezet om het wat duidelijker te maken.
We are running a Isa 2006 with 4 network interfaces.
* Internet *
|
* Internal* - O- * Red Zone *
|
* Dmz*
(not connected to anything)
The ip ranges are
* Internet * = our external IP
* Internal * = our internal IP range. (168..
* Red zone * = 10.0.0.0
The problem that I have is that I would like to publish an FTP server that is located on the RED ZONE.
I have the following infrastructure rules.
- Localhost to all networks = ROUTE
- Internal to DMZ = NAT (this rule is disabled)
- Internal to Red Zone = NAT
- External to Red Zone := NAT
- Inernet access to all networks = NAT.
- I have created a rule that allows ftp traffic from the external, localhost and REDzone to the ip of the Ftp server in the red zone.
When I try to connect from the OUTSIDE (via the external interface) to the ftp server by using a dosbox ( ftp server.of.client.com) I get the message " Connected to server.of.client.com. But nothing happens. (no request for login or pasword or anything).
The ISA monitoring reports : that the connection from the EXTERNAL IP (where i'm coming from) to the LOCALHOST (?) has been denied (Default rule)
When I try to do the same thing from the INTERNAL network.. everything is fine.
My question . Have I somehow f*** up the way I have configured the network configuration ? What do i need to change to get the ISA to see that requests to the FTP server in the red zone are not directed at its localhost ?
Klein vraagje , ik weet niet dadelijk of jullie me gaan kunnen helpen. Ik heb de probleemomschrijving even in het engels gezet om het wat duidelijker te maken.
We are running a Isa 2006 with 4 network interfaces.
* Internet *
|
* Internal* - O- * Red Zone *
|
* Dmz*
(not connected to anything)
The ip ranges are
* Internet * = our external IP
* Internal * = our internal IP range. (168..
* Red zone * = 10.0.0.0
The problem that I have is that I would like to publish an FTP server that is located on the RED ZONE.
I have the following infrastructure rules.
- Localhost to all networks = ROUTE
- Internal to DMZ = NAT (this rule is disabled)
- Internal to Red Zone = NAT
- External to Red Zone := NAT
- Inernet access to all networks = NAT.
- I have created a rule that allows ftp traffic from the external, localhost and REDzone to the ip of the Ftp server in the red zone.
When I try to connect from the OUTSIDE (via the external interface) to the ftp server by using a dosbox ( ftp server.of.client.com) I get the message " Connected to server.of.client.com. But nothing happens. (no request for login or pasword or anything).
The ISA monitoring reports : that the connection from the EXTERNAL IP (where i'm coming from) to the LOCALHOST (?) has been denied (Default rule)
When I try to do the same thing from the INTERNAL network.. everything is fine.
My question . Have I somehow f*** up the way I have configured the network configuration ? What do i need to change to get the ISA to see that requests to the FTP server in the red zone are not directed at its localhost ?
:strip_exif()/u/24090/hekje.gif?f=community)
:strip_icc():strip_exif()/u/1878/iconburngot.jpg?f=community)
:strip_icc():strip_exif()/u/25852/bowmore_18k.jpg?f=community)
Dit topic is gesloten.