Microsoft KB Archive/838239

= How to use virtual private networking to join or access an internal domain from an external client by using Microsoft Internet Security and Acceleration (ISA) Server 2006 or in ISA Server 2004 =

Article ID: 838239

Article Last Modified on 12/4/2007

-

APPLIES TO


 * Microsoft Internet Security and Acceleration Server 2004 Standard Edition
 * Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition
 * Microsoft Internet Security and Acceleration Server 2006 Enterprise Edition
 * Microsoft Internet Security and Acceleration Server 2006 Standard Edition

-





SUMMARY
''A virtual private network (VPN) is the extension of a private network that encompasses links across shared or public networks such as the Internet. You can send data between two computers by using a VPN across a shared or public network in a manner that emulates a point-to-point private link. VPN connections allow users who work at home or travel to obtain a remote access connection to an organization server by using the infrastructure that is provided by a public network, such as the Internet.

This article discusses about how to configure ISA Server for VPN in different scenarios.''



MORE INFORMATION
ISA Server enables you to configure and manage site-to-site VPN connections and VPN remote client access to the corporate network. For site-to-site VPN connections, you configure a VPN gateway on the local and remote computers.

To configure ISA Server for site-to-site VPN connections, follow these steps:
 * 1) You enable VPN access and set VPN properties in the ISA Server Management MMC snap-in.
 * 2) Create a site-to-site network object to represent the remote site.
 * 3) Configure the ISA Server network rules to specify the way traffic flows between networks.
 * 4) Configure access rules for traffic inspection and filtering.

For more information about how to configure site-to-site VPN in ISA Server, visit the following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkId=60490

For more information about how to configure site-to-site VPN in ISA Server Enterprise Edition, visit the following Microsoft Web site:

http://www.microsoft.com/technet/prodtechnol/isa/2004/plan/site_to_site_vpn_ee.mspx

For remote site VPN connections, you can use ISA Server’s VPN quarantine capabilities to include the VPN clients on a quarantined VPN clients network until their compliance with corporate security requirements are verified. If the clients qualify after the verification process, the VPN clients are moved to the VPN clients network. The quarantined VPN clients network and the VPN clients network are subject to the ISA Server firewall access policy. This helps you control VPN client access to network resources.

For more information about how to configure secure remote access that uses ISA Server, visit the following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkId=58803

To configure ISA Server to provide secure virtual private network (VPN) functionality for roaming clients, visit the following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkID=35247

To configure ISA Server Enterprise Edition-based computers to provide secure virtual private network (VPN) functionality for roaming clients, visit the following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkID=34637

For more information about ISA Server VPN deployment and to view &quot;How to&quot; articles, visit the following Microsoft Web site:

http://www.microsoft.com/isaserver/techinfo/guidance/2004/vpn.mspx

For more information about how to troubleshoot VPN issues, visit the following Microsoft Web site:

http://go.microsoft.com/fwlink/?LinkID=55241

Keywords: kbhowto kbinfo kbisa2006swept KB838239

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.