How To Configure an IPsec VPN between Microsoft ISA Server 2004 and an Alli

Download How To Configure an IPsec VPN between Microsoft ISA Server 2004 and an Allied Telesis Router Client .PDF

2125594 Downloads

2.69 MB .pdf

This rule applies to outbound traffic because it applies to traffic that is outbound from the source, not the ISA server. Page 22 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 6. All company names, logos, and product designs that are trademarks or registered trademarks are the property of their respective owners. 44 gblport=500 add firewall policy=lan rule=2 interface=vlan2 action=nonat protocol=all ip=172. Page 21 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 4. Set up the firewall enable firewall create firewall policy=lan enable firewall policy=lan icmp_forwarding=ping add firewall policy=lan interface=vlan1 type=private add firewall policy=lan interface=vlan2 type=public add firewall policy=lan nat=enhanced interface=vlan1 gblint=vlan2 The firewall uses NAT to translate private-side client IP addresses to a single global public IP address. Page 14 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 3. Page 20 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 3. Ping the private side of the ISA server Initiate a ping from a device on the private side of the client router to a device on the private side of the ISA server. Use the following commands: add firewall policy=lan rule=1 interface=vlan2 action=allow ip=69. 254 encap=ipsec add firewall policy=lan rule=3 interface=vlan1 action=nonat protocol=all ip=172. Then click the Next button to move to the User Sets dialog. Page 3 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 5. On the Add Network Entities dialog, select Remote_network. Page 11 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 10. cfg Log into the router as the security officer, secoff. Page 10 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 9. Page 18 | AlliedWare™ OS How To Note: VPNs with Microsoft ISA Server 2004 Configure the ISA Server—network rules This section describes how to create a network rule. The New Access Rule Wizard opens: Enter a name such as “VPN access” and click the Next button to move to the Rule Action dialog. 14 encalg=3desouter key=1 expirys=28800 group=2 enable isakmp 6