ISAserver.org - Monthly Article Update Hi ISAlist, New articles added to ISAserver.org last month: Title: Share Your Thoughts with Us through the ISAserver.org Site Survey Author: Stephen Chetcuti Summary: Take part in the ISAserver.org Site Survey to help improve the site, to help us learn more about our visitors, and to win a signed copy of Tom & Deb Shinder's Configuring ISA Server 2004. Link: http://www.ISAserver.org/news/ISAserver-Site-Survey.html Title: Understanding the ISA 2004 Access Rule Processing Author: Stefaan Pouseele Summary: In contrast to the simple trusted and untrusted ISA Server 2000 networking model, the ISA Server 2004 uses a far more sophisticated and flexible networking model. As a consequence the way you define your network and firewall policy in ISA Server 2004 is completely different and therefore also the logic behind the access rule processing done by ISA Server 2004. Because the result is not always what you might expect, we will explore in this article how ISA Server 2004 process the different rule lists and how a particular rule is chosen to validate a particular outgoing request. Link: http://www.ISAserver.org/articles/ISA2004_AccessRules.html Title: Understanding and Implementing ISA 2004 as an Application Firewall with the RPC Stateful Inspection Filter Author: Thomas Shinder Summary: ISA Server 2004 (ISA firewall) includes a number of technologies that provide enhanced security performance for corporate network infrastructures. The unique combination of security and functionality is highlighted by the application filters included with the ISA firewall right out of the box. It is an important fact to realize that the RPC (Remote Procedure Call) protocol is used by many Microsoft networked applications, but that most of IT personnel, including network and firewall administrators, do not understand how the RPC protocols works. They don’t understand what potential problems are generated by the RPC protocol, and most importantly, they don’t know how to protect infrastructure servers. Typical network and firewall administrators just think that RPC is not secure and don’t even consider the fact that RPC access can be made secure, and this article will show you how to secure it. Link: http://www.ISAserver.org/articles/2004rpc.html Title: Win an Autographed Copy of Configuring ISA Server 2004 When You Sign Up! Author: Stephen Chetcuti Summary: ISAserver.org, in collaboration with Syngress Publishing, has been giving away signed copies of Dr Tom Shinder’s Configuring ISA Server 2004. In this document you will find details about three different ways to win a copy: signing up to the ISAserver.org Newsletters, joining the ISAserver.org Message Boards, or joining the ISAserver.org Email Discussion List. Link: http://www.ISAserver.org/news/Newsletter-DiscussionList-Forum.html Title: How to Make the ISA Firewall as Dumb as a Traditional Stateful Packet Inspection Firewall – Redux Author: Thomas Shinder Summary: This article first appeared in the ISAserver.org newsletter a couple of months ago. Its was so popular that I decided to update and enhance it and bring it online on the main ISAserver.org articles site. As always, I welcome your observations and opinions on the stuff we put up here on www.isaserver.org and hope you’ll use the discussion link at the beginning and ending of this article to further expand on what’s discussed in this article. Link: http://www.ISAserver.org/articles/2004dumbdownisa.html Title: Understanding ISA Firewall Networks (v1.1) Author: Thomas Shinder Summary: We’ve been fielding a ton of questions on the ISAserver.org mailing list in the last couple of weeks that focus on issues with the new ISA firewall’s concept of the network. This is one of the key differences between the ISA Server 2000 firewall and the new ISA firewall, ISA Server 2004. Because this is such a critical issue to understanding how the ISA firewall works, I figured it would be worth taking some time to discuss these issues with you so that you don’t run into problems with your ISA firewall configuration and access policy. Link: http://www.ISAserver.org/articles/2004isafirewallnetworks.html Title: Exporting Your SSL Certificate from IIS 6.0 and Importing To ISA Server 2004 By Wayne Berry Author: Thomas Shinder Summary: Sometimes you want to take an SSL certificate that you already own that is installed on your web server and import it into the ISA firewall’s machine certificate store. This allows for encryption of outbound SSL from the ISA server to the published Web site in an SSL to SSL bridging scenario. One example is publishing your Outlook Web Access (OWA) site through your ISA firewall. This article guides you through the steps required to export your SSL certificate from you Internet Information Server (IIS) 6.0 Web site and import that certificate into the ISA firewall’s machine certificate store Link: http://www.ISAserver.org/articles/exportsslcert.html Title: Unsupported, but nice: Customize Forms-based logon page in your ISA Server 2004 By Ladislav Solc Author: Thomas Shinder Summary: Did you know that you can customize Forms-based logon (FBA) page for OWA users in your ISA Server 2004? Yes. You can! This article shows you how. Link: http://www.ISAserver.org/articles/2004custfba.html Title: Enabling Full Outlook Client Access Anywhere using the ISA Firewall’s Secure Exchange RPC Filter Author: Thomas Shinder Summary: There’s no reason why your users ever need to be without their full Outlook MAPI client. When you bring an ISA firewall into your organization and configure Secure Exchange RPC Server Publishing Rules and pair this with an industry standard split DNS infrastructure, your users will realize all the productivity benefits that flow from the "Outlook Just Works" scenario. We use it everyday and so do our customers. Give it a try and you’ll be a believer too! Check out this article for all the details. Link: http://www.ISAserver.org/articles/2004securerpc.html Visit the Subscription Management (http://newsletter.isoftmarketing.com/) section to unsubscribe. ISAserver.org is in no way affiliated with Microsoft Corp. For sponsorship information, contact us at advertising@xxxxxxxxxxxxx Copyright © ISAserver.org 2004. All rights reserved.