Stefaan Pouseele Blog

Preparing the ISA Server 2006 for Kerberos Constrained Delegation

In the planning and architecture document Authentication in ISA Server 2006 you’ll find a very good overview of the authentication process used by ISA Server 2006. The three major steps are: challenging the user for his/her credentials, validating those credentials against an …

Preparing the ISA Server 2006 for Kerberos Constrained Delegation Read More »

Redirecting OWA Users to the Correct Directories and Protocols with ISA Server 2006

Thomas Shinder wrote a two part article series about how to redirect OWA users to the correct directories and protocols. That article series was originally written with ISA Server 2004 in mind and can be found at: http://www.isaserver.org/tutorials/Redirecting-OWA-Users-Part1.html http://www.isaserver.org/tutorials/Redirecting-OWA-Users-Part2.html With ISA …

Redirecting OWA Users to the Correct Directories and Protocols with ISA Server 2006 Read More »

An IPSec tunnel mode connection is not implemented as a routable interface on a Windows based server

Imagine you have to connect to a Partner Network with an IPSec tunnel mode VPN connection. For performance and/or reliability reasons you do so through a dedicated Internet or leased line connection. For this scenario we can draw the following …

An IPSec tunnel mode connection is not implemented as a routable interface on a Windows based server Read More »

When using an IPSec tunnel mode site-to-site VPN you are noticing frequent ISA 2004 error messages "0xC0040014 FWX_E_FWE_SPOOFING_PACKET_DROPPED"

While investigating the “Quick Mode SA idle timeout” problem mentioned in my previous blog A new IPSec Quick Mode Security Association is negotiated every 5 minutes when you use an IPSec tunnel mode connection on a Windows 2003 SP1 based server, …

When using an IPSec tunnel mode site-to-site VPN you are noticing frequent ISA 2004 error messages "0xC0040014 FWX_E_FWE_SPOOFING_PACKET_DROPPED" Read More »

A new IPSec Quick Mode Security Association is negotiated every 5 minutes when you use an IPSec tunnel mode connection on a Windows 2003 SP1 based server.

I observed that if an IPSec tunnel mode site-to-site VPN is used between two ISA 2004 servers, or between two Windows 2003 RRAS servers, or between an ISA 2004 server and a Windows 2003 RRAS server, then every 5 minutes …

A new IPSec Quick Mode Security Association is negotiated every 5 minutes when you use an IPSec tunnel mode connection on a Windows 2003 SP1 based server. Read More »

Scroll to Top