0

We have xp workstations connected onto a small business server acting as active directory/isa firewall/proxy (no dhcp). Is there a reason that after installing a 2nd firewall on the network (same subnet etc), that changing the default gateway on the workstations isnt sufficient to route inet traffic through the new firewall?

A freshly setup linux box connects straight on to the alternate firewall with just ip, default gateway. dns settings.

Will having ISA still active on the network confuse the process? Are there further config settings deeper down in windows that need attention?

Any ideas pointers on this would be appreciated?

Other info: Firewalls tried: Smoothwall and Ipcop; small ethernet netwoork 40 pcs; can ping to new firwalls from workstations; activating web proxy on new firewall and reconfiguring workstation browser works fine; >Point of 2nd firewall is lack of some necessary features on ISA for a linux app; Would be nice to have some redundancy to though

2 Answers2

1

It's possible that there's a group policy setting be enforced by the SBS/ISA box. Perhaps thats interfering with your ip address settings. You also didn't specify what application your trying to use it. If it's just IE, it may have a proxy setting being enforced by GPO/SBS/ISA.

tselliott
  • 31
  • 3
1

Short answer is that just flipping DHCP should be enough.

Actually removing ISA isn't needed.

You could also consider a better edge firewall/router like the Juniper (branch) SRX line or Cisco 877.

LapTop006
  • 6,466
  • 19
  • 26
  • Im more interested in the TCP/IP stack settings and what im missing here –  Jan 08 '10 at 18:46
  • There should be nothing in the client stacks that is manually set. That's what DHCP is for. The SBS server merely needs to have the correct details set statically and will be fine. – LapTop006 Jan 09 '10 at 07:02