Forefront Edge Security TechCenter >
Forefront Edge Security Forums
>
Forefront Edge Security - Publishing
>
ISA 2006 Perimeter Template - Is Proxy ARP supported?
ISA 2006 Perimeter Template - Is Proxy ARP supported?
- I need to publish some services using the Perimeter (3 leg) DMZ configuration and the services I am publishing must have public addresses (no NAT). I currently have single /28 block of public addresses. Does ISA 2006 support Proxy ARP and allow me to divide my /28 block into two /29 subnets (with one on the Internet interface and one on the Perimeter interface - and Proxy ARP "hiding" the fact that I have subneted from my ISP) or do I have to obtain a second public block of IPs from my ISP and have them route the new block through external IP of the ISA server?
Answers
- No; ISA Server only handles IPv4 traffic.
ARP is Ethernet.
You can use a /29 in the perimeter network, but your ISA must be known to your ISP as the next hop router for this network.
Jim Harrison Forefront Edge CS- Proposed As Answer byJim Harrison IsaDewd Wednesday, September 16, 2009 6:26 PM
- Marked As Answer byRex Wheeler Wednesday, September 16, 2009 6:31 PM
All Replies
- No; ISA Server only handles IPv4 traffic.
ARP is Ethernet.
You can use a /29 in the perimeter network, but your ISA must be known to your ISP as the next hop router for this network.
Jim Harrison Forefront Edge CS- Proposed As Answer byJim Harrison IsaDewd Wednesday, September 16, 2009 6:26 PM
- Marked As Answer byRex Wheeler Wednesday, September 16, 2009 6:31 PM
