RE: ISA Server and Win2k3 standard OS

From: Davis, Matt (matt.davis_at_countryfinancial.com)
Date: 07/29/03

  • Next message: Henry, Christopher M.: "IAS as a RADIUS server" 
    To: "'Bean, John'" <BeanWJ@dshs.wa.gov>, focus-ms@securityfocus.com
Date: Tue, 29 Jul 2003 13:10:34 -0500

    Some searching on Microsoft.com and Google yielded the following:

    ISA on Windows Server 2003
    http://www.isaserver.org/tutorials/installon2003.html

    Seemed fairly thorough, but I haven't personally walked through it (but
    intend to this weekend on my test boxes). http://www.isaserver.org is a
    good ISA resource, as is
    http://www.microsoft.com/technet/treeview/default.asp?url=/technet/prodtechn
    ol/isa/Default.asp.

    HTH,

    Matt Davis, MCSA
    Client Server Business Support
    309-821-6288 (P) / 309-821-5800 (F) / 309-532-6288 (C)
    COUNTRY Insurance & Financial Services
    1711 G.E. Road, Bloomington, IL 61704
    www.countryfinancial.com

    >-----Original Message-----
    >From: Bean, John [mailto:BeanWJ@dshs.wa.gov]
    >Sent: Tuesday, July 29, 2003 11:47 AM
    >To: focus-ms@securityfocus.com
    >Subject: ISA Server and Win2k3 standard OS
    >
    >
    >Hello all,
    >
    >I have been tasked with researching a test implementation of
    >Microsoft's
    >Firewall/Proxy, Internet Security and Acceleration (ISA)
    >Server, on Windows
    >2003 (Win2k3) standard server. Although Win2k3 has several wizards
    >available to enable services for specific applications, i.e.
    >Web server,
    >file server, print server, dns server, etc...I don't find a
    >wizard to prep
    >it for an installation of ISA. Has anyone had any experience
    >installing and
    >configuring ISA on Win2k3 or does anyone have any resource
    >suggestions for
    >me?
    >
    >My thanks in advance,
    >
    >John
    >
    >Wm. John Bean, MCSE+I, MCT
    >Information Technology Security Analyst
    >Information System Services Division
    >Department of Social and Health Services
    >State of Washington
    >beanwj@dshs.wa.gov <mailto:beanwj@dshs.wa.gov>
    >360.902.7670
    >
    >
    >
    >
    >---------------------------------------------------------------
    >------------
    >Your network firewall and IDS products do not prevent Web application
    >attacks - the most common form of online exploitation-
    >resulting in Web
    >defacement, data theft, sabotage and fraud.
    >KaVaDo is the only company that provides a complete suite of Web
    >application security products.
    >Download a FREE whitepaper on "Security Policy Automation for Web
    >Applications":http://www.securityfocus.com/Kavado-focus-ms
    >---------------------------------------------------------------
    >------------
    >

    ---------------------------------------------------------------------------
    Your network firewall and IDS products do not prevent Web application
    attacks - the most common form of online exploitation- resulting in Web
    defacement, data theft, sabotage and fraud.
    KaVaDo is the only company that provides a complete suite of Web
    application security products.
    Download a FREE whitepaper on "Security Policy Automation for Web
    Applications":http://www.securityfocus.com/Kavado-focus-ms
    ---------------------------------------------------------------------------

  • Next message: Henry, Christopher M.: "IAS as a RADIUS server"

    Relevant Pages

    • RE: Front End/Back End communication
      ... MVP -- ISA Firewalls ... There is no such thing as security perfection. ... single front-end/back-end Exchange Server will find this setup to be ...
      (Focus-Microsoft)
    • Re: Forest/Domain in the "DMZ" to accomodate web, front-end servers
      ... I don't know where you came up with the idea that ISA Server doesn't ... as it's been doing that since ISA 2000 debuted a number of years ago now. ... Who cares if untrusted hosts compromise ... My point is the network edge is not the place to have all your security. ...
      (microsoft.public.security)
    • Re: Security experts criticize an SBS installation
      ... If I had a dime every time some two bit "security expert" thought Microsoft products were insecure I'd have a lot of dimes and a lot of folks that haven't looked at Microsoft products since WinNT. ... I have a GSEC security credential, volunteer for the Center for Internet Security and know that my security of my network is based more on the lack of control of my workstations than it is with that ISA box. ... I cannot, to the best of my knowledge, remember a SBS box that has been hacked when the passwords are long/strong/secure, the box is patched, and the workstations are configured based on the risk of each person. ... But a SBS server ..even with that "so called" hacked in umpteen minutes ISA server ...Get him to tell you in details how he hacked into ISA server. ...
      (microsoft.public.windows.server.sbs)
    • Re: MS ISA any good?
      ... I think ISA is fabulous! ... to integrate the logs into SQL server which makes things quite nice. ... I'm sure you can set up most of the same functionality ... > security device, as well as providing web cache services. ...
      (comp.security.firewalls)
    • Re: Can not access web from ISA Server
      ... a mail server and a stats server. ... Thank you for your patience with my security noobishness... ... > publish a web site that is behind the ISA. ... > browser and you must configure an Access Rule just for it. ...
      (microsoft.public.isa)
    • Quantcast