RE: Publishing OWA through a single homed ISA 2004 server

  • From: "Periyasamy, Raj" <Raj.Periyasamy@xxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Fri, 25 Mar 2005 13:50:44 -0500

Thanks Tom, That's what I meant, "Reverse Proxy" mode. I would really
like to use ISA as a full fledged firewall, but it's a management issue,
we pay a million dollar a year for our network service provider for our
managed firewall, DMZ etc. So this is the only way I could integrate ISA
into our existing DMZ fro publishing OWA and RPC/HTTP, and also keep the
management happy.


Regards,

Raj

-----Original Message-----
From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx] 
Sent: Friday, March 25, 2005 11:56 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Publishing OWA through a single homed ISA 2004
server

http://www.ISAserver.org

Hi Raj,

Or you can look here:

http://isaserver.org/articles/2004pixwebproxy.html

But like Jim noted, its Web proxy only (I don't say Web cache mode,
because you can do Web proxy without caching).

Also, you can't take the firewall out of ISA. Even if you do only Web
proxy with clients, its still a firewall. Only diff is that all the
firewall fire power is aimed at protecting the ISA firewall itself. Its
sort of shame when people deploy it in Web proxy only, since they miss
out on about 95% of the protection they could get.

HTH, 


Tom
www.isaserver.org/shinder
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7
MVP -- ISA Firewalls


-----Original Message-----
From: Periyasamy, Raj [mailto:Raj.Periyasamy@xxxxxxxxxxxx] 
Sent: Friday, March 25, 2005 10:09 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Publishing OWA through a single homed ISA 2004
server

http://www.ISAserver.org

The particular document by Tom was part of his ISA 2000 Exchange
2000/2003 Deployment kit. You can adopt the document for ISA 2004
easily. The document is called unihomedwebproxy.doc. If anyone needs it
let me know I can send it to you. 


Regards,

Raj


-----Original Message-----
From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] 
Sent: Friday, March 25, 2005 11:03 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Publishing OWA through a single homed ISA 2004
server

http://www.ISAserver.org

Sorry, Tom never wrote any articles on using a single-NIC ISA in "back
firewall" mode.

-------------------------------------------------------
   Jim Harrison
   MCP(NT4, W2K), A+, Network+, PCG
   http://isaserver.org/Jim_Harrison/
   http://isatools.org
   Read the help / books / articles!
-------------------------------------------------------
 

-----Original Message-----
From: Periyasamy, Raj [mailto:Raj.Periyasamy@xxxxxxxxxxxx] 
Sent: Friday, March 25, 2005 07:51
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Publishing OWA through a single homed ISA 2004
server

http://www.ISAserver.org

Walter,
There is an excellent article written by Tom on how to do this. Follow
it step by step. 


Regards,

Raj


-----Original Message-----
From: Wilson, Walter [mailto:Walter.Wilson@xxxxxxxxxx] 
Sent: Friday, March 25, 2005 9:50 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Publishing OWA through a single homed ISA 2004 server

http://www.ISAserver.org

Hi,

I'm trying to implement OWA 2003 through ISA 2004 and I've spent many
hours
re-doing and re-testing configuration as per white papers with no
success. I
always receive the message: You could not log on...make sure username
etc,
etc.

I have ISA 2004 sitting in a DMZ (behind Cisco PIX) with a single card.
I have a front-end Exchange server (actually, two load balanced) on the
internal network. At the moment for tests, ISA and Exchange have all
protocols/ports open between them and can resolve names etc.

The 'internal' network on ISA is defined as DMZ+Internal, the listener
is
listening on 'All+localhost'
The communications is done through bridged SSL, certificate is installed
on
Exchange and ISA. (However, I cannot select certificate in 'Bridging'
tab,
but I can in the listener  - is this normal?)  Exchange is using basic
authentication, ISA using OWA forms.

An important thing is that, using a sniffer, I cannot see any attempt to
connect to the Exchange front end. Using a plain test web server I
can...

Anyone have any ideas?

Regards,

Walter Wilson


************************************************************************
************************************
This email is confidential and intended solely for the use of the
individual to whom it is addressed. If you are not the intended
recipient, be advised that you have received this email in error and
that any use, dissemination, forwarding, printing or copying of this
email is strictly prohibited. If you have received this email in error
please contact the sender.

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
raj.periyasamy@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

All mail to and from this domain is GFI-scanned.


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
raj.periyasamy@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
raj.periyasamy@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 03-2005