Hey Jim, OK, gotcha. I don't see what VMPS has to do with security. The ISA firewall is a network security device, the Cisco VMPS is a network management feature. That's what it look like to me. Tom www.isaserver.org/shinder Tom and Deb Shinder's Configuring ISA Server 2004 http://tinyurl.com/3xqb7 MVP -- ISA Firewalls -----Original Message----- From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] Sent: Wednesday, March 09, 2005 8:06 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: VMPS+network security http://www.ISAserver.org Hi Tom, It was: "I am in a heated debate with our Sr Sys Admin - I hope that you can help. He believes that an ISA server along with standard routers and firewalls should be the end all to improving network security. He doesn't believe that it should be implemented with a Cisco solution ie VMPS. Can you shed some light on this?" The answer to your question is that since VMPS is not an IP-based technology, its implementation is independent of ISA and can be used to augment (security in layers) your network security structure. Jim -----Original Message----- From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx] Sent: Wednesday, March 09, 2005 5:33 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: VMPS+network security http://www.ISAserver.org Hi Dorothy, What was the original question? Thanks! *Remember, Cisco isn't a security company, it's a networking company. Also, remember Cisco is *not* a software company, it's a networking company. Network attacks are now taking place at the application layer, which means software. Who knows more about software? Cisco or Microsoft?* Tom www.isaserver.org/shinder Tom and Deb Shinder's Configuring ISA Server 2004 http://tinyurl.com/3xqb7 MVP -- ISA Firewalls -----Original Message----- From: Dorothy [mailto:fitzhughd@xxxxxxxxxxxxxxxxx] Sent: Wednesday, March 09, 2005 7:19 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: VMPS+network security http://www.ISAserver.org Ok Fellas.... Of course I knew when I posted to the site that I was inquiring about a Microsoft product. And secondly when people have networking issues they don't call Microsoft first. Perhaps I should have worded my question differently. I'm looking for support (or a reasonable arguement against) having network issues addressed using both platforms. I, of course as a Network Engineeer favor all things Cisco and the like. As far as dot1x goes the certificate authority and md5 give me pause and difficulty with implementation. And lastly my good people, my question is how to better thwart unauthorized machines with ISA that are not governed by its policies. If the ISA server can not push policy to them what is ISA able to do with those machines? Forgive me...our SR guy talks the talk and while there is room to share on our network, but I guess I'm just looking for a more clarification of how to best integrate this solution into our Cisco network (not the other way around). Thanks in advance for fielding a Network Engineer's questions. Dorothy ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned. ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx