Re: ISA Design Question: Best Practice

• From: Jim Harrison <jim@xxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Wed, 28 May 2003 06:16:42 -0700

The required lack of tasking makes this impossible.
Are you sure you're not willing to do something besides wiggle your nose?
;-)

Two relatively simple options:
1. give them a VLAN on your external switch and tell them that they're 
completely exposed.
2. hand each one of them their assigned IP settings via script and use Client 
Address Sets.  Also, make sure your routers know that these IPs can only see a 
path to ISA and DNS (so they can find ISA).


  Jim Harrison
  MCP(NT4, W2K), A+, Network+, PCG
  http://isaserver.org/Jim_Harrison/
  http://isatools.org
  Read the help / books / articles!



Hi everyone,
   What is the best way to provide only internet access to your
corporate guest or contractors in your small but highly-secure single
forest, single domain 20-50 user environment, with no manual
configurations needed by the local administrator and no extra cabling or
hardware?  
 
Example;  Your company will be inviting in 10 minutes, five slimy sales
guys that require to have internet access for their presentation but you
do not want them to be nosey and snooping around your network.   
 
Example; Your company has a development lab that periodically will allow
contractors to work in, but the contractors brings in their own laptops
to work on and they need to have internet access to read their mail,
again you don't want the contractors to have access to your development
visual source safe nor snooping around your network but your chief
developer is breathing down your neck to give the contractors what they
need in 30 minutes.''
 
I know this sounds a bit exaggerated but I wanted to know if there is a
way for the contractors or slimy sales guys dhcp clients, to be
separated virtually off the corporate network with no interaction from
the local administrator?  Can ISA control this or is this as simple as
getting a VLAN switch? 
 
  _____  

David V. Dellanno - MCSE, MCP+I, MCP
MSDEMO Consultants
Williams Place
2564 Bridgewood Lane
Snellville, Georgia 30078 USA
(770) 736-8794 (Office)
msdemo.net <http://msdemo.net/> 
 
 

 

 

 


Confidentiality Notice:
This e-mail message, including any attachments, is for the sole use of the 
intended recipient(s) and may contain confidential and privileged information. 
Any unauthorized review, use, disclosure or distribution is prohibited. If you 
are not the intended recipient, please contact the sender by reply e-mail and 
destroy all copies of the original message.

Other related posts:

• » ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » Re: ISA Design Question: Best Practice
• » Re: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » Re: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » RE: ISA Design Question: Best Practice
• » Re: ISA Design Question: Best Practice
• » Re: ISA Design Question: Best Practice

1. Home
2. isalist
3. Archive
4. 05-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---