Mike
Mon Sep 20 13:48:15 CDT 2004
This is a multi-part message in MIME format.
------=_NextPart_000_000D_01C49F20.DCCB7E30
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Javier,
I don't think I can get the customer to go for a 2nd ISP connection at =
their Main office. Isn't there a way to "open" ISA for just the traffic =
to come in and go out on the 192.168.2.x range for the VPN connection? =
I tried adding the 192.168.2.x range to the LAT to see if that would =
work, but it hasn't so far.
Mike
=20
"Javier Gomez [SBS MVP]" <javier_gomez@REMOVE.THIS.engineer.com> wrote =
in message news:eOWW9vznEHA.3396@tk2msftngp13.phx.gbl...
I have very little experience with NT, but I think you can... is just =
an issue of creating the computer account beforehand (KB 242432).
However, going back to the OP problem... this is more complicated. You =
need to either: a) Stop using ISA and remove 1 NIC on the server or b) =
use the VPN router parallel to ISA (something like this: =
http://groups.google.com/groups?hl=3Den&lr=3D&ie=3DUTF-8&c2coff=3D1&selm=3D=
e6Ps6uymEHA.3428%40TK2MSFTNGP09.phx.gbl).
--=20
Javier [SBS MVP]
<< SBS ROCKS!!! >>
"CRIS HANNA (SBS-MVP)" <crishannanospam@computingpossibilities.net> =
wrote in message news:uwlXxfznEHA.3464@tk2msftngp13.phx.gbl...
NT 40 server cannot be a BDC in an AD Domain
--=20
Cris Hanna (SBS-MVP)
_____________________
Please only respond in the Newsgroup and not directly to me, so that =
everyone can share the information
"Mike Officer" <mofficer@execulinkNOSPAM.com> wrote in message =
news:%23MBBmSznEHA.2904@TK2MSFTNGP15.phx.gbl...
After reading previous posts here, I didn't see the answer I was =
looking
for. A customer of mine has 2000SBS setup at their Main office, =
and an
NT4.0 Server setup at their Branch office. I installed to a =
Watchguard
SOHO6tc VPN router in each location and I have an active VPN =
connection
between both locations.... have verified it by "ping" from both =
ends.
I'm trying to set it up so that they can have the Branch office =
server
"talk" to the SBS2000 server... ideally be a BDC for the 2000SBS =
server, to
allow Branch office users to access more resources and they have a =
program
they want the Branch office users to be able to access on the =
2000SBS box.
Main Office SBS2000 2 Nic's
Internal Nic- 10.0.0.x
External Nic - 192.168.1.2
VPN Router - 192.168.1.1 and Static IP from ISP
Branch Office
NT4.0 Server 1 Nic - 192.168.2.10
VPN Router - 192.168.2.1 and Staic IP from ISP
Same domain name
I guess my question is... how can I "open" ISA to allow this to =
happen, or
how should I best configure this.
Any help is greatly appreciated!
Mike
------=_NextPart_000_000D_01C49F20.DCCB7E30
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.3790.186" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Javier,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I don't think I can get the customer to =
go for a=20
2nd ISP connection at their Main office. Isn't there a way to =
"open" ISA=20
for just the traffic to come in and go out on the 192.168.2.x =
range=20
for the VPN connection? I tried adding the 192.168.2.x range to =
the LAT to=20
see if that would work, but it hasn't so far.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>Mike</FONT></DIV>
<DIV> </DIV>
<BLOCKQUOTE dir=3Dltr=20
style=3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; =
BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV>"Javier Gomez [SBS MVP]" <<A=20
=
href=3D"mailto:javier_gomez@REMOVE.THIS.engineer.com">javier_gomez@REMOVE=
.THIS.engineer.com</A>>=20
wrote in message <A=20
=
href=3D"news:eOWW9vznEHA.3396@tk2msftngp13.phx.gbl">news:eOWW9vznEHA.3396=
@tk2msftngp13.phx.gbl</A>...</DIV>
<DIV><FONT face=3DArial size=3D2>I have very little experience with =
NT, but I=20
think you can... is just an issue of creating the computer account =
beforehand=20
(KB 242432).</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>However, going back to the OP =
problem... this is=20
more complicated. You need to either: a) Stop using ISA and remove 1 =
NIC on=20
the server or b) use the VPN router parallel to ISA (something like =
this: <A=20
=
href=3D"
http://groups.google.com/groups?hl=3Den&lr=3D&ie=3DUTF-8&=
amp;c2coff=3D1&selm=3De6Ps6uymEHA.3428%40TK2MSFTNGP09.phx.gbl">
http:/=
/groups.google.com/groups?hl=3Den&lr=3D&ie=3DUTF-8&c2coff=3D1=
&selm=3De6Ps6uymEHA.3428%40TK2MSFTNGP09.phx.gbl</A>).</FONT></DIV><FO=
NT=20
face=3DArial size=3D2>
<DIV><BR>-- <BR>Javier [SBS MVP]</DIV>
<DIV> </DIV>
<DIV><< SBS ROCKS!!! >></FONT></DIV>
<BLOCKQUOTE dir=3Dltr=20
style=3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; =
BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV>"CRIS HANNA (SBS-MVP)" <<A=20
=
href=3D"mailto:crishannanospam@computingpossibilities.net">crishannanospa=
m@computingpossibilities.net</A>>=20
wrote in message <A=20
=
href=3D"news:uwlXxfznEHA.3464@tk2msftngp13.phx.gbl">news:uwlXxfznEHA.3464=
@tk2msftngp13.phx.gbl</A>...</DIV>
<DIV><FONT face=3DArial size=3D2>NT 40 server cannot be a BDC in an =
AD=20
Domain</FONT></DIV>
<DIV><BR>-- <BR>Cris Hanna =
(SBS-MVP)<BR>_____________________<BR>Please only=20
respond in the Newsgroup and not directly to me, so that everyone =
can share=20
the information</DIV>
<BLOCKQUOTE=20
style=3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; =
BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV>"Mike Officer" <<A=20
=
href=3D"mailto:mofficer@execulinkNOSPAM.com">mofficer@execulinkNOSPAM.com=
</A>>=20
wrote in message <A=20
=
href=3D"news:%23MBBmSznEHA.2904@TK2MSFTNGP15.phx.gbl">news:%23MBBmSznEHA.=
2904@TK2MSFTNGP15.phx.gbl</A>...</DIV>After=20
reading previous posts here, I didn't see the answer I was=20
looking<BR>for. A customer of mine has 2000SBS setup at =
their Main=20
office, and an<BR>NT4.0 Server setup at their Branch office. =
I=20
installed to a Watchguard<BR>SOHO6tc VPN router in each location =
and I=20
have an active VPN connection<BR>between both locations.... have =
verified=20
it by "ping" from both ends.<BR><BR>I'm trying to set it up so =
that they=20
can have the Branch office server<BR>"talk" to the SBS2000 =
server...=20
ideally be a BDC for the 2000SBS server, to<BR>allow Branch office =
users=20
to access more resources and they have a program<BR>they want the =
Branch=20
office users to be able to access on the 2000SBS box.<BR><BR>Main=20
Office SBS2000 2 Nic's<BR><BR>Internal Nic- =
10.0.0.x<BR>External Nic=20
- 192.168.1.2<BR>VPN Router - 192.168.1.1 and Static IP from=20
ISP<BR><BR>Branch Office<BR><BR>NT4.0 Server 1 Nic -=20
192.168.2.10<BR>VPN Router - 192.168.2.1 and Staic IP from =
ISP<BR>Same=20
domain name<BR><BR>I guess my question is... how can I "open" ISA =
to allow=20
this to happen, or<BR>how should I best configure this.<BR><BR>Any =
help is=20
greatly=20
appreciated!<BR><BR>Mike<BR><BR><BR></BLOCKQUOTE></BLOCKQUOTE></BLOCKQUOT=
E></BODY></HTML>
------=_NextPart_000_000D_01C49F20.DCCB7E30--