ISAserver.org - Monthly Article Update Hi ISAlist, New articles added to ISAserver.org last month: Title: Microsoft Releases Procedures on Using ISA Server Firewalls to Protect Your Network from the Sobig.F Worm Traffic Author: Thomas Shinder Summary: Microsoft has released official recommendations on how to configure your ISA Server firewall to beat down Sobig worm traffic. Check this out, read the info, and get the fixes. Link: http://www.ISAserver.org/pages/article.asp?id=1140 Title: Configuring the Calling ISA Server Firewall/VPN Gateway to use EAP/TLS Certificate Authentication ? Part 2 Author: Thomas Shinder Summary: Here's the awaited for part 2 in our series on how to get the calling ISA Server firewall/VPN gateway to use EAP/TLS certificate-based authentication when connecting to the answering ISA Server firewall/VPN gateway. Get it while its hot! (and our servers are online) Link: http://www.ISAserver.org/pages/article.asp?id=1139 Title: Configuring the Calling ISA Server Firewall/VPN Gateway to use EAP/TLS Certificate Authentication - Part 1 Author: Thomas Shinder Summary: If you're using your ISA Server firewall as a VPN gateway, you're probably using MS-CHAPv2 authentication and the PPTP VPN protocol. While that provides decent security for your gateway to gateway link, how about moving to the next level? That's right, use EAP/TLS certificate authentication and L2TP/IPSec. Sounds hard? Its easier than you think. Check out part 1 today! Link: http://www.ISAserver.org/pages/article.asp?id=1138 Title: Key ISA 2000 Knowledge Base Articles - Compiled by Scott Jiles Author: Thomas Shinder Summary: Check out this list of key KB articles compiled by top-notch PSS escalation engineer Scott Jiles. One of them might just solve a tough ISA Server 2000 problem you're having today! Link: http://www.ISAserver.org/pages/article.asp?id=1137 Title: ISA Server 2000 Fixes (July 2003) by Scott Jiles Author: Thomas Shinder Summary: Do you need to know what fixes were available before SP1? How about after SP1? Do you need to know what fixes were included in SP1 or what ISA fixes were released after Feature Pack 1? Scott Jiles has put together a comprehensive list of fixes and shares his compilation with the ISAServer.org community. Link: http://www.ISAserver.org/pages/article.asp?id=1136 Title: Microsoft Official ISA Server Firewall Recommendations for the Blaster Worm Author: Thomas Shinder Summary: Microsoft has released its official recommendations on how to protect against the Blaster worm. Check inside for details. Link: http://www.ISAserver.org/pages/article.asp?id=1135 Title: Disabling Anonymous Outbound Access in ISA Server 2000 Author: Thomas Shinder Summary: One of the most frequent pieces of advice I give is to disable anonymous access. What exactly do I mean? I'm sure many of you have asked that question! Check out this article an get an explanation of my request to "disable anonymous access" Link: http://www.ISAserver.org/pages/article.asp?id=1134 Title: Configuring Windows Server 2003-based ISA Server Firewall/VPN Server to Accept inbound NAT-T L2TP/IPSec Calls Author: Thomas Shinder Summary: Road warriors depend on VPN access to the corporate network. Just one file, one presentation, can make the difference between happy holidays for everyone and standing in line at a soup kitchen. Windows Server 2003 supports PPTP, L2TP/IPSec, and the new RFC IPSec NAT Traversal VPN protocol. IPSec NAT-T allows your road warriors to use IPSec to connect from anywhere. Check this article to find out how. Link: http://www.ISAserver.org/pages/article.asp?id=1132 Title: Socket Pooling in Windows Server 2003 by Raymond P.L. Comvalius Author: Thomas Shinder Summary: If you want to publish services co-located on the ISA Server itself, you have to be sure that socket pooling is disabled. We've described how to disable socket pooling in IIS 5.0 here at ISAServer.org. IIS 6.0 is a completely different story. Raymond Comvalius shows you how to disable socket pooling for IIS and Exchange Services running on the firewall itself. Link: http://www.ISAserver.org/pages/article.asp?id=1131 Title: Configuring ISA Server 2000 MySQL Database Logging by Brian Bailey Author: Thomas Shinder Summary: Have you wanted to log to a database, but you didn't have a Microsoft SQL Server sitting around? Then Brian Bailey has some good news for you! Brian shows you in this article how to get ISA Server 2000 to log to a MySQL database. Enjoy! Link: http://www.ISAserver.org/pages/article.asp?id=1130 Title: Supporting Internet Host Name Resolution for ISA Server SecureNAT Clients Author: Thomas Shinder Summary: One of the more problematic situations businesses running ISA Server firewalls run into is name resolution support for SecureNAT clients. Unlike the situation with Firewall and Web Proxy clients, where the ISA Server firewall resolves Internet host names on their behalf, the SecureNAT client must be able to resolve Internet host names themselves. If the SecureNAT client can?t resolve the name, the connection fails. Check out this article for a great, low maintenance solution to this problem. Link: http://www.ISAserver.org/pages/article.asp?id=1129 Visit the Subscription Management (http://newsletter.isoftmarketing.com/) section to unsubscribe. ISAserver.org is in no way affiliated with Microsoft Corp. For sponsorship information, contact us at advertising@xxxxxxxxxxxxx Copyright © ISAserver.org 2003. All rights reserved.