[isapros] Re: Hot Topics

• From: "John T \(lists\)" <johnlist@xxxxxxxxxxxxxxxxxxx>
• To: <isapros@xxxxxxxxxxxxx>
• Date: Thu, 21 Jun 2007 11:53:51 -0700

No, Sonicwall will never be as great as ISA is!

Yes, it can leverage AD, both protocol and location. 
Yes, you can force all traffic through the VPN.
No, it does not provide the level of logging that ISA does, but using a
syslog it does provide quite a bit, but I would not say comprehensive.
Stateful packet, yes. Application layer, no.

Enhanced OS allows you to create the same type of rules for traffic to/from
VPN since it treats VPN as a zone itself, meaning objects can be assigned to
the zone and rules can be created specifying the zone or the object or a
group of objects.

John T


> -----Original Message-----
> From: isapros-bounce@xxxxxxxxxxxxx [mailto:isapros-
> bounce@xxxxxxxxxxxxx] On Behalf Of Thomas W Shinder
> Sent: Thursday, June 21, 2007 10:33 AM
> To: isapros@xxxxxxxxxxxxx
> Subject: [isapros] Re: Hot Topics
> 
> How granular? Does it leverage Active Directory users and groups? Per
> protocol? Per location? Allow Web proxy through the VPN link? Provide
> comprehensive logging to text, MSDE or SQL for the VPN connection?
> Perform both stateful packet and application layer inspection on the
> remote access VPN connections?
> 
> Thomas W Shinder, M.D.
> Site: www.isaserver.org
> Blog: http://blogs.isaserver.org/shinder/
> Book: http://tinyurl.com/3xqb7
> MVP -- Microsoft Firewalls (ISA)
> 
> 
> 
> > -----Original Message-----
> > From: isapros-bounce@xxxxxxxxxxxxx
> > [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of John T (lists)
> > Sent: Thursday, June 21, 2007 12:09 PM
> > To: isapros@xxxxxxxxxxxxx
> > Subject: [isapros] Re: Hot Topics
> >
> > > A webcast on how to use VPN fine tuned access controls for remote
> > > access
> > > VPN clients is a good one. Its not like your "hardware" VPN
> > server that
> > > let's everyone party down on the corpnet once they get
> > connected. You
> > > can provide secure least privilege access.
> >
> > FYI, for those that can not substantiate the cost of ISA server for a
> > network, or part of it, Sonicwall Enhanced OS does indeed
> > allow granular
> > control of access via VPN.
> >
> > John T
> >
> >
> >
> >
> >

• References:
  • [isapros] Re: Hot Topics
    • From: Thomas W Shinder

Other related posts:

• » [isapros] Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics
• » [isapros] Re: Hot Topics

1. Home
2. isapros
3. Archive
4. 06-2007

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---