首页业界动态通用技术技术文章-ISA技术文章-ISA 2006ForeFront TMG相关下载 登录论坛 @联系我们
ISA中文站 > 信息 > 技术文章-ISA > ISA-安装和规划 > How to :使用ISA Server 2004配置背靠背的防火墙环境
现在时间是: 2019-02-18 15:54
How to :使用ISA Server 2004配置背靠背的防火墙环境

(2004-10-29 13:29)
来源:ISA中文站

下面做测试

192.168.50.10机器上做如下测试
C:\Documents and Settings\sam>ping 192.168.100.1

Pinging 192.168.100.1 with 32 bytes of data:

Reply from 192.168.100.1: bytes=32 time=6ms TTL=127
Reply from 192.168.100.1: bytes=32 time<1ms TTL=127
Reply from 192.168.100.1: bytes=32 time<1ms TTL=127
Reply from 192.168.100.1: bytes=32 time<1ms TTL=127

Ping statistics for 192.168.100.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 6ms, Average = 1ms

C:\Documents and Settings\sam>ping 192.168.1.10

Pinging 192.168.1.10 with 32 bytes of data:

Reply from 192.168.1.10: bytes=32 time=3ms TTL=248
Reply from 192.168.1.10: bytes=32 time=1ms TTL=248
Reply from 192.168.1.10: bytes=32 time=1ms TTL=248
Reply from 192.168.1.10: bytes=32 time=1ms TTL=248

Ping statistics for 192.168.1.10:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 3ms, Average = 1ms

ISA前端防火墙上做
C:\Documents and Settings\test>ping 192.168.50.10

Pinging 192.168.50.10 with 32 bytes of data:

Reply from 192.168.50.10: bytes=32 time=3ms TTL=127
Reply from 192.168.50.10: bytes=32 time<1ms TTL=127
Reply from 192.168.50.10: bytes=32 time<1ms TTL=127
Reply from 192.168.50.10: bytes=32 time<1ms TTL=127

Ping statistics for 192.168.50.10:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 3ms, Average = 0ms

Server段机器上作
C:\Documents and Settings\tes>ping 192.168.50.11

Pinging 192.168.50.11 with 32 bytes of data:

Reply from 192.168.50.11: bytes=32 time=1ms TTL=62
Reply from 192.168.50.11: bytes=32 time<1ms TTL=62
Reply from 192.168.50.11: bytes=32 time<1ms TTL=62
Reply from 192.168.50.11: bytes=32 time<1ms TTL=62

Ping statistics for 192.168.50.11:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 1ms, Average = 0ms

192.168.50.10的电脑上访问192.168.100.15web服务器

访问在前端防火墙上的WEB服务器,可以看到你的真是IP内容已经变成真实的IP了。

这样就可以在外围网对IP的访问权限进行限定。

至此所有配置按照要求完成。下面是对于具体细节的设定,比如后端防火墙不能所有到所有,所有协议,所有出入,可以根据服务器段范围,外围网范围,需要那些服务协议,按照需要自行设定,具体方法这里不在累述,其它帖子论述很多。

作者:Shenxu
责任编辑:风间子

<<上一页 [1] [2] [3] [4] [5]
上一篇:How to:在存在多条路由的内部网络中配置ISA Server 2004
下一篇:设计ISA Server 2004计算机的Windows服务基础
相关信息:

远程管理ISA Server 2004
升级到ISA 2004防火墙的原因
How to :停止ISA Server 2004中的MSDE服务
防火墙客户端是如何工作的:关于ISA防火墙的应用层状态识别功能
How to :在ISA Server 2004中同时使用多条路由

热点信息 TOP 10
ISA Server 2004标准版安装指南
How to :在域环境中配置ISA Server 2004
How to :使用公共IP地址来访问DMZ中的服务器
ISA Server 2004 SP2 使用指南 v 1.06
How To :配置ISA防火墙作为网络间的路由器
How to :在ISA Server 2004中配置DMZ网络
How to:在存在多条路由的内部网络中配置ISA Server 2004
ISA2004 beta2 快速安装指南
How to : 如何配置ISA Server 的网络环境 v2.0
How to :在ISA Server 2004中同时使用多条路由

搜索 SEARCH
关键字:
包含:
搜索于:


Copyright © ISACN.ORG 2004-2019 All Rights Reserved..