RE: is ISA a solution?
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 17 Nov 2005 21:04:43 -0600
Hi Ray,
Nice well considered response. Thanks!
Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://spaces.msn.com/members/drisa/
Book: http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
**Who is John Galt?**
> -----Original Message-----
> From: Ray Dzek [mailto:Ray.Dzek@xxxxxxxxxxxxxxx]
> Sent: Thursday, November 17, 2005 4:59 PM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: is ISA a solution?
>
> http://www.ISAserver.org
>
> I have ISA, Cisco ASA 5510, and Sonicwall. I have also used
> Ipchains on
> Linux. They all do a spiffy job of keeping Thomas out of my
> network.
>
> I do not really have a preference of one over another. They each have
> their +/-'s. ISA is great in a windows centric environment.
> But we run
> Windows, Mac, Solaris, and Linux and I host several non-IIS web sites.
> ISA is awesome for its ability to front-end your Exchange 2003 servers
> with RPC over HTTPS connections. ISA is also great for handling your
> VPN connections.
>
> My ISA pet peeves: I still think that having to use 3rd party add-on's
> on ISA for content filtering is lame. Also it is a pain in the ___ to
> track traffic back to internal users unless you are using running in
> authentication mode which for me seems like it would be a major
> consideration when purchasing a "windows" firewall. I do not see any
> valid reason why when running ISA without authentication for
> my Mac, and
> Linux boxes I still can't collect user data for all the windows users.
>
> I've been on the receiving end of ISA hater comments. I've had PIX
> snobs actually yell at me for being stupid enough for using a
> microsoft
> product as my front end firewall for our windows environment.
> As far as
> security goes, my ISA box has never let me down. There are the usuall
> stupid reboots required for the security patches-de-jour for
> the OS. My
> ISA is NOT behind any other firewall. It stands alone.
>
> When configured and monitored properly nearly any firewall
> will be fine.
> When mis-configured and not monitored any firewall will be a
> liability.
>
> Good luck in your hunt.
>
>
> -----Original Message-----
> From: Vitali [mailto:Vitali@xxxxxxxxxxxxxxxxxx]
> Sent: Thursday, November 17, 2005 3:54 AM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] is ISA a solution?
>
> http://www.ISAserver.org
>
> I am considering whether to use ISA, Cisco PIX or some UNIX systemas a
> firewall.
>
> what would members of the list recommend?
>
>
> Regards,
>
> Vitaly
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion
> List as: tshinder@xxxxxxxxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
Other related posts:
