Hi all, Just a note, now that the new ISA manual by Dr Schinder is out, do I qualify for a free copy due to the 12 month upgrade protection with the first manual? Regards Joseph -----Original Message----- From: ISAserver.org [mailto:info@xxxxxxxxxxxxx] Sent: 03 January 2003 10:44 To: [ISAserver.org Discussion List] Subject: [isalist] ISAserver.org - Monthly Article Update http://www.ISAserver.org ISAserver.org - Monthly Article Update Hi ISAlist, Title: Solving the Dreaded "500 Internal Server Error The target principal name is incorrect" Error Summary: Have you ever seen the "500 Internal Server Error" telling your that the "target principle name" was incorrect? What's up with that? The answer is that you need to fix up your SSL bridging configuration. Check out this article to find out what causes the problem and how to fix it. Link: http://www.ISAserver.org/pages/article.asp?id=1044 Title: VPN Client Security Part 2: Forcing Firewall Policy on VPN Clients Summary: Most of us put together a VPN to allow external network clients secure access to the private network. We usually think of the VPN Server as a security device that protects the internal network from external attack. In reality, the VPN Server is just a Remote Access Server that allows RAS clients to use the Internet instead of the Public Switched Telephone Network as the transit network. You've got to force firewall policy on VPN clients or else you'll suffer the consequences. Link: http://www.ISAserver.org/pages/article.asp?id=1043 Title: Configuring a Trihomed ISA Server as a VPN Server: Adventures with the DMZ Interface UPDATED 12/22/2002 Summary: What is the internal interface? The DMZ interface? The external interface? Can you VPN into the DMZ interface? Read this article and draw your own conclusions. Link: http://www.ISAserver.org/pages/article.asp?id=1042 Title: Publishing Multiple Web Roots with a Path Statement, Part 2 Summary: Need to publish multiple Web sites using the same FQDN by using different path entries? No problem! This is part 2 of the two part article on how to publishing multiple sites using the same FQDN, but redirecting to different Web servers based on path. Link: http://www.ISAserver.org/pages/article.asp?id=1041 Title: Microsoft Webinar: Protecting Exchange and IIS with ISA Server and NAV for ISA Summary: Microsoft presents a webcast next week on new and improved techniques on how to publish and protect Exchange and IIS Server on the internal network. This webcast is going to be great! Check inside for details. Link: http://www.ISAserver.org/pages/article.asp?id=1040 Title: Controlling Outbound Access for Web Proxy Clients with Site and Content Rules Summary: You can use Site and Content Rules to limit internal network users to approved sites only. However, the procedure isn't entirely straightforward. This article shows you how to configure Site and Content Rules that limit users to a selected group of sites while denying access to all other sites. SSL issues are also discussed. Link: http://www.ISAserver.org/pages/article.asp?id=1039 Title: Stop Virus Downloads with GFIs DownloadSecurity Summary: Are you tired of users downloading viruses, worms, trojans and scumware onto your network? Are you tired of conducting software audits on your workstations only to find a week later that same crud on your users desktops? If so, then you need to check out DownloadSecurity and see how it blocks users from downloading malware and viruses and puts you back in control Link: http://www.ISAserver.org/pages/article.asp?id=1034 Title: Publishing Multiple Web Roots with a Path Statement, Part 1 Summary: I dont think a day passes without someone posting on the newsgroups, web boards, mailing list a question about how to publish the root of multiple Web sites based on a path statement. This subject comes up because this was a feature available in Proxy 2.0, but has since disappeared with ISA Server. Do you need to redirect to Web roots based on a path? Then check out this article and get started! Link: http://www.ISAserver.org/pages/article.asp?id=1038 Title: ISA Server and Beyond Officially Released and Available Summary: ISA Server and Beyond is officially released and immediately available! Check out this article for details. Make sure to check out the new cover and let us know what you think of it. Link: http://www.ISAserver.org/pages/article.asp?id=1035 Visit the Subscription Management (http://newsletter.isoftmarketing.com/) section to unsubscribe. ISAserver.org is in no way affiliated with Microsoft Corp. For sponsorship information, contact us at advertising@xxxxxxxxxxxxx Copyright ) ISAserver.org 2002. All rights reserved. List Sponsored by Aspelle Aspelle's Microsoft-centric, Aspelle Everywhere, leverages ISA server and the Internet to quickly and cost-effectively manage and deliver secure, client-less access to all corporate applications (Web, Unix, Windows and legacy systems), for all users. More info at http://www.aspelle.com/info ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Exchange Server Resource Site: http://www.msexchange.org/ Windows Security Resource Site: http://www.windowsecurity.com/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jkerr@xxxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Do not publish, disclose, discuss nor distibute the contents or any information within this message if you are not the intended recipient or the information is of a confidential nature. This message does not represent in any way the views or opinions nor has the endorsement of the company / companies, but solely that of the author. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com **********************************************************************