2003RRAS and Network Access Quarantine

  • Thread starter Thread starter dpower
  • Start date Start date
D

dpower

Hi,
Trying to set up Network Access Quarantine on 2003 RRAS for a Dial-Up
policy. We have it working with VPN but cant get it to work with Dial-Up.
Can it be done and how to do it? Also, does the default policy Routing and
Remote Access have to be there to allow Dial-Up. It seems if we disable that
policy, Dial-Up doesnt' work even if we add the same settings to our new
Dial-Up policy?

Thanks
 
Hi,

Maybe in your RRAS policy you added a few parametes to the rule saying that
it only happen when connecting via VPN ;-(

I don't see any reason, but I never implemented RRAS Quarantine with modems.
If you have a lot of RRAS policies, and if you want to know 'who has access
to what in my company via RRAS' you can use this tool :
http://www.esnouf.net/rras_analyser.htm.

If you want to implement Quarantine, take a look at ISA 2004. With ISA,
Quarantine is handled by the firewall so you can create efficient rules, and
is extremly simple.

If creating analysis script make you nervous, check my product (in my
signature) .. it works for ISA but also with Windows 2003... with a quick
modification.

So you get rid of script analysis .. and get rid of RQC/RQS.

Hope this helps.
 
thanks will check it out

FE-FR said:
Hi,

Maybe in your RRAS policy you added a few parametes to the rule saying that
it only happen when connecting via VPN ;-(

I don't see any reason, but I never implemented RRAS Quarantine with modems.
If you have a lot of RRAS policies, and if you want to know 'who has access
to what in my company via RRAS' you can use this tool :
http://www.esnouf.net/rras_analyser.htm.

If you want to implement Quarantine, take a look at ISA 2004. With ISA,
Quarantine is handled by the firewall so you can create efficient rules, and
is extremly simple.

If creating analysis script make you nervous, check my product (in my
signature) .. it works for ISA but also with Windows 2003... with a quick
modification.

So you get rid of script analysis .. and get rid of RQC/RQS.

Hope this helps.
--
FE (MVP ISA)
(e-mail address removed)
You plan to implement Quarantine on ISA 2004 ?
Check this : http://www.esnouf.net/programs/QSS/qssinaction/QssInAction.htm
Click to expand...
 
Back
Top