Working with and Creating Rules for the VPN Clients Network
Even after VPN access has been established, it is still necessary to create firewall rules to
allow VPN clients to access specific resources. By default, this type of access is not granted.
ISA was designed to be ???secure by default,??? and require administrators to specifically
define the type of access that VPN users would have into the network.
Some of the network templates, when applied, create default rules that allow VPN clients
access into the network. If one of these templates has not been applied, or if specific granular
access for clients is required, the following steps can be performed to allow the VPN
Clients network to have access to the internal network:
1. From the ISA Server Management Console, click on the Firewall Policy node in the
Scope pane.
2. From the Tasks pane, click on the link labeled Create New Access Rule.
3. Enter a descriptive name for the access rule, such as ???Allow VPN Clients Full Access
to Internal Network,??? and click Next.
FIGURE 9.7 Adding AD groups for remote access.
235
9
Enabling VPN Functionality in ISA Server
4.
Pages:
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420