Re: ISA Opinions
From: Steve Clark [MSFT] (bogus_at_microsoft.com)
Date: 03/29/05
- Next message: Desmond Lee: "RE: Cannot Find Domain Controller"
- Previous message: rodchar: "Re: certificate authority"
- In reply to: mwebb: "ISA Opinions"
- Next in thread: Matt Gibson: "Re: ISA Opinions"
- Reply: Matt Gibson: "Re: ISA Opinions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 29 Mar 2005 12:39:26 -0800
Whether or not a firewall runs on hardware, software, sodium ions, or
anything else is not the question: the question is, does the firewall I am
looking at provide layer 7 filtering and inspection of traffic? If it
doesn't then it's not going to provide the maximum benefit that firewalls
*need* to provide these days.
Perimeter security however is not the end all be all of network security.
ISA does what it can to address a specific array of threats in a particular
setting. A PIX has it's own issues and particular sets of threats it
mitigates. Frequently, I see these devices working together to provide a
perimeter "defense in depth" approach.
"mwebb" <mwebb@discussions.microsoft.com> wrote in message
news:B82492D7-111E-43D7-8260-1E1AFA63C4CC@microsoft.com...
>I am working on a security specialty in my MCSE track. I just started
> studying ISA 2000.
>
> Microsoft's claims in the early chapters of the study kit are pretty
> impressive. But things are seldom as good as they first appear.
>
> What are the good points and not so good points about using ISA server? Is
> it better, worse or just different from a hardware firewall?
>
> Myrt
> --
> 7TA9241
- Next message: Desmond Lee: "RE: Cannot Find Domain Controller"
- Previous message: rodchar: "Re: certificate authority"
- In reply to: mwebb: "ISA Opinions"
- Next in thread: Matt Gibson: "Re: ISA Opinions"
- Reply: Matt Gibson: "Re: ISA Opinions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
