ISAserver.org - Monthly Article Update Hi ISAlist, Title: Solving the Dreaded "500 Internal Server Error ? The target principal name is incorrect" Error Summary: Have you ever seen the "500 Internal Server Error" telling your that the "target principle name" was incorrect? What's up with that? The answer is that you need to fix up your SSL bridging configuration. Check out this article to find out what causes the problem and how to fix it. Link: http://www.ISAserver.org/pages/article.asp?id=1044 Title: VPN Client Security Part 2: Forcing Firewall Policy on VPN Clients Summary: Most of us put together a VPN to allow external network clients secure access to the private network. We usually think of the VPN Server as a security device that protects the internal network from external attack. In reality, the VPN Server is just a Remote Access Server that allows RAS clients to use the Internet instead of the Public Switched Telephone Network as the transit network. You've got to force firewall policy on VPN clients or else you'll suffer the consequences. Link: http://www.ISAserver.org/pages/article.asp?id=1043 Title: Configuring a Trihomed ISA Server as a VPN Server: Adventures with the DMZ Interface UPDATED 12/22/2002 Summary: What is the internal interface? The DMZ interface? The external interface? Can you VPN into the DMZ interface? Read this article and draw your own conclusions. Link: http://www.ISAserver.org/pages/article.asp?id=1042 Title: Publishing Multiple Web Roots with a Path Statement, Part 2 Summary: Need to publish multiple Web sites using the same FQDN by using different path entries? No problem! This is part 2 of the two part article on how to publishing multiple sites using the same FQDN, but redirecting to different Web servers based on path. Link: http://www.ISAserver.org/pages/article.asp?id=1041 Title: Microsoft Webinar: Protecting Exchange and IIS with ISA Server and NAV for ISA Summary: Microsoft presents a webcast next week on new and improved techniques on how to publish and protect Exchange and IIS Server on the internal network. This webcast is going to be great! Check inside for details. Link: http://www.ISAserver.org/pages/article.asp?id=1040 Title: Controlling Outbound Access for Web Proxy Clients with Site and Content Rules Summary: You can use Site and Content Rules to limit internal network users to approved sites only. However, the procedure isn't entirely straightforward. This article shows you how to configure Site and Content Rules that limit users to a selected group of sites while denying access to all other sites. SSL issues are also discussed. Link: http://www.ISAserver.org/pages/article.asp?id=1039 Title: Stop Virus Downloads with GFI?s DownloadSecurity Summary: Are you tired of users downloading viruses, worms, trojans and scumware onto your network? Are you tired of conducting software audits on your workstations only to find a week later that same crud on your users desktops? If so, then you need to check out DownloadSecurity and see how it blocks users from downloading malware and viruses and puts you back in control Link: http://www.ISAserver.org/pages/article.asp?id=1034 Title: Publishing Multiple Web Roots with a Path Statement, Part 1 Summary: I don?t think a day passes without someone posting on the newsgroups, web boards, mailing list a question about how to publish the root of multiple Web sites based on a path statement. This subject comes up because this was a feature available in Proxy 2.0, but has since disappeared with ISA Server. Do you need to redirect to Web roots based on a path? Then check out this article and get started! Link: http://www.ISAserver.org/pages/article.asp?id=1038 Title: ISA Server and Beyond Officially Released and Available Summary: ISA Server and Beyond is officially released and immediately available! Check out this article for details. Make sure to check out the new cover and let us know what you think of it. Link: http://www.ISAserver.org/pages/article.asp?id=1035 Visit the Subscription Management (http://newsletter.isoftmarketing.com/) section to unsubscribe. ISAserver.org is in no way affiliated with Microsoft Corp. For sponsorship information, contact us at advertising@xxxxxxxxxxxxx Copyright © ISAserver.org 2002. All rights reserved.