RE: Securing ISA Interfaces
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 4 Dec 2003 08:07:16 -0600
Hi Glenn,
Haven't you downloaded and read the chapter yet?
HTH,
Tom
Thomas W Shinder
www.isaserver.org/shinder <http://www.isaserver.org/shinder>
ISA Server 2004 Beta - Coming Soon
<http://www.microsoft.com/isaserver/beta/default.asp>
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp
<http://tinyurl.com/1llp>
-----Original Message-----
From: Glenn Maks [mailto:gmaks@xxxxxxxxx]
Sent: Thursday, December 04, 2003 7:46 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Securing ISA Interfaces
http://www.ISAserver.org
Good Morning Everyone - and that includes Tom and Jim, It seems
I have touched on a rather interesting and debatable topic of securing
Interfaces in ISA, I would not have thought it would have received so
much attention, but that is a Good and Positive thing, as per your
suggestion to create Packet Filters in RRAS to manage the communications
between my DMZ (192.168.10.0/24) and my Private segment
(172.19.4.0/22)as I have both defined in my LAT, I have to say guys, I
see no where in RRAS where I can do this. Let me explain how I have RRAS
configured, No only am I using ISA as my Firewall and Web Proxy, but I
am also using RRAS which is installed on the same computer as the
Communication Link that connects all my Branch offices together, I am
using L2TP with Certificates, I can tell you when the connection is
made, it seems to be Ok, but when any of the links are broken, it is a
real PAIN to get them connected again, I have my RRAS configured as a
Router, LAN Demand Dial Router and Remote Access Server, I can however
create and apply Packet filters for each VPN Tunnel but I do NOT see
anywhere in RRAS where I can create Packet filters for both LAT
definitions that are defined in the ISA Management Interface. Could you
please provide some more insight, I will take another look myself.
Thank You All
Glenn
------------------------------------------------------
List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion
List as: tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to
$subst('Email.Unsub')
Other related posts: