The external
network is considered untrusted by default, and all connections from the external
network are blocked. Specific rules allowing traffic from the external network must
then be specified.
. VPN Clients??”This network consists of all the individual IP addresses of VPN clients
who are currently connected to the ISA server. Although the network cannot be
deleted, VPN connections are disabled by default, and must be explicitly turned on.
The creation of this network allows for granular firewall rules that affect only VPN
users, such as allowing them to access only specific servers.
CHAPTER 3 Exploring ISA Server 2006 Tools and Concepts
71
3
Configuring Networks with ISA Console Network Wizards and Tools
. Quarantined VPN Clients??”The Quarantined VPN Clients network is similar to the
VPN Clients network, except that it contains those VPN clients that haven??™t passed
specific security restrictions set by the administrator. For more information on configuring
this network, refer to Chapter 9, ???Enabling Client Remote Access with ISA
Server 2006 Virtual Private Networks (VPNs).???
Keeping these concepts in mind, the process of defining networks in ISA subsequently
involves mapping out the entire subnet topology of a network and then defining it within
the ISA Console Network node.
Pages:
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186