Re: ISA Enterprise Edition and Active Directory
- From: "Jim Harrison" <jim@xxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Mon, 31 Mar 2003 16:59:38 -0800
The first thing I would do is rethink my strategy as to load balancing and
redundancy.
Enterprise Arrays get you:
1. Centralized management of multiple ISA Servers with all the bennies of
differing array policies
2. CARP; a cache-sharing mechanism that helps to "spread the wealth" of the
associated ISA Server cache drives and RAM
3. CARP support in wpad or /array.dll?Get.Routing.Script (allows the client
to "walk the list" of servers)
..notice how none of the above items include the words "failover" or
"redundancy"? The reason is that (IMHO) any failover technique that depends
on the client making informed decisions regarding the state of a remote
server is doomed to failure.
DNS Round Robin is another example of such a technique. The state of any
given server is never fully understood by the clients it serves.
Consequently, long timeouts and unwarranted failures are often the result of
a dependency on this kind of load-balancing or failover choice.
Unless $$ are the primary factor in this chice (unlikely, since you can
afford $5K per CPU license), then you should investigate a separate software
or hardware solution.
Both http://microsoft.com/isaserver/partners and http://isaserver.org
include long lists of both items. Something there should fit the bill quite
nicely for you.
Jim Harrison
MCP(NT4, W2K), A+, Network+, PCG
http://www.microsoft.com/isaserver
http://isaserver.org/Jim_Harrison
http://isatools.org
Read the help, books and articles!
----- Original Message -----
From: "shane mullins" <tsmullins@xxxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Monday, March 31, 2003 11:27
Subject: [isalist] ISA Enterprise Edition and Active Directory
http://www.ISAserver.org
Hello,
We currently have two ISA servers running in integrated mode as
standalone servers. We are moving them to an array with Windows 2000
Advanced Server and ISA Enterprise edition for load balancing and
redundancy. Of course with ISA Enterprise Edition and an Array the array
members must have Active Directory installed and configured. I have read
that, for security reasons, the ISA boxes be in a seperate AD container.
My question is, how would you set up AD on your array members?
Thanks
Shane
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.465 / Virus Database: 263 - Release Date: 3/25/2003
Free Trial Software: Monitor & Manage Web Use with SurfControl Web Filter
for MS ISA Server http://www.surfcontrol.com/go/zisadl1
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
Other related posts:
