Create an Access Rule Allowing VPN Clients Access to the Internal Network

At this point, VPN clients can connect to the VPN server. However, the VPN clients cannot access any resources on the Internal network. You must first create an Access Rule that allows members of the VPN clients network access to the Internal network. In this example, you will create an Access Rule that allows all traffic to pass from the VPN clients network to the Internal network. In a production environment, you would create more restrictive access rules so that users on the VPN clients network have access only to resources they require.

Perform the following steps to create the VPN clients Access Rule:

1.In the Microsoft Internet Security and Acceleration Server 2004 management console, expand the server name and click the Firewall Policy node. Right click the Firewall Policy node, point to New and click Access Rule.

2.In the Welcome to the New Access Rule Wizard page, enter a name for the rule in the Access Rule name text box. In this example, we will name the rule VPN Client to Internal. Click Next.

3.On the Rule Action page, select Allow and click Next.

4.On the Protocols page, select All outbound protocols from the This rule applies to list. Click Next.

5.On the Access Rule Sources page, click Add. In the Add Network Entities dialog box, click the Networks folder and double click on VPN Clients. Click Close.

ISA Server 2004 Configuration Guide

232

Page 233 Page 235
Page 234
Image 234
Microsoft manual ISA Server 2004 Configuration Guide 232
Page 233 Page 235
Top Page Image Contents