re: New Articles on Tales from the Edge

PsYteAk — Thu, 04 Sep 2008 17:27:47 GMT

Nice to virtualize ISA server for redunce.

In the other article you Referende to the article http://support.microsoft.com/kb/329807/

Does this apply to the later ISA/TMG products?

re: New Articles on Tales from the Edge

isablog — Thu, 04 Sep 2008 21:27:53 GMT

To make that article more relevant to ISA 2004/2006 and TMG, the statement would be "Does Not Support Domain Members that Communicate across a NAT Network Relationship".

For ISA 2000, this means domain communication between clients in the Internal and domain clients in any other network is not supported because the only network relationship between the Internal network and any other network is NAT

For ISA 2004/2006/TMG, this means domain communication between clients in one network and domain clients in another network is not supported when the explicit or implicit network relationship between those clients is NAT

Let's further define this context of the terms explicit and implicit in this scenario:

- explicit: a network rule applies to the two hosts by virtue of their unique inclusion in the network objects which define the "source" and "destination" for the network rule

- implicit: a network rule applies to the two hosts by virtue of their membership within the network objects which define the "source" and "destination" for the network rule