We recently added a ISA server to our network. We didn't want to replace the Pix but did want the functionality of publishing our internal websites through the ISA appliance.
Currently I have it setting in our DMZ which is a 192.168.1.x private address space. But I am limited due to NAT to pass more than 1 of our external web server address to the ISA applicance.
We want to be able to have anyone accessing our web servers (several on inside network) from the outside to go through the pix and then the ISA box.
Is there away to have the PIX pass this traffic to the ISA box with requiring NAT? So the ISA will due the NAT. I am running into a double NAT issue currently.
Or will I need to change the design to a back to back or parallel configuration?
If you can provide examples of the commands and IP setup that would help alot.
Thanks