RE: Wingate Replacement

From: Jim Harrison (SPG) (jmharr@microsoft.com)
Date: 05/27/02 

Date: Mon, 27 May 2002 14:50:15 -0700
From: "Jim Harrison (SPG)" <jmharr@microsoft.com>
To: "Melameth, Daniel D." <dmelameth@mba-cpa.com>, "Thad Horak" <thadhorak@yahoo.com>, <focus-ms@securityfocus.com>

I'm sorry to report that Microsoft's ISA cannot perform port redirection for non-web traffic.
Jim

        -----Original Message-----
        From: Melameth, Daniel D. [mailto:dmelameth@mba-cpa.com]
        Sent: Mon 5/27/2002 08:41
        To: Thad Horak; focus-ms@securityfocus.com
        Cc:
        Subject: RE: Wingate Replacement
        
        

                Microsoft's ISA Server can do this and is integrated with Active
        Directory...
        
        -----Original Message-----
        From: Thad Horak [mailto:thadhorak@yahoo.com]
        Sent: Friday, May 24, 2002 2:35 PM
        To: focus-ms@securityfocus.com
        Subject: Wingate Replacement
        
        
        All,
        
        I'm hoping that someone might be able to suggest a
        replacement application for a current wingate
        implementation I manage. I use the tcp port mapping functionality of
        wingate to allow developers access to some of our sql servers.
        
        Example:
        User connects to port 555 on wingate server which maps
        to port 1433 on sql server.
        
        All access to these sql servers goes through this one
        access point. The sql infrastructure is far to large
        to manage separate sql user accounts across the farm,
        but there is a strong need to have accountability and
        auditing of what they are doing. I'm looking for an
        application that can provide the same functionality,
        but provide discretionary access control in addition, preferably using
        the our Windows AD infrastructure. Can anyone point me in the right
        direction? Thanks in advance.
        
        Thad