Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
? About Deploying DNS Advertisers with Back to Back DMZ
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
? About Deploying DNS Advertisers with Back to Back DMZ - 19.Nov.2008 4:10:28 PM
|
|
|
spsmatthew
Posts: 2
Joined: 19.Nov.2008
Status: offline
|
Hello all. This is my first post and I am very new to ISA in general, but here goes.
We currently have an ISA 2000 box that has been functional for many years, but have decided to move to a new domain and want to deploy ISA 2006 using Scenario 3 from this article:
http://www.isaserver.org/tutorials/DNS-Publishing-Scenarios-Part2.html
This will require me to add three new boxes...one for each firewall and one for the DMZ. We plan to use Hyper-V on the DMZ box to allow growth for app servers.
My first question is how many NIC's I will need on each box. I know the article says 3 on the Internal if you want to separate anonymous and authenticated DMZ requests, but won't I also need 3 on the External firewall (ISP, DMZ, and Internal Firewall)?
Also, are there any good articles/tips for moving from 2000 all the way to 2006?
Regards,
Matthew
|
|
|
|
|
RE: ? About Deploying DNS Advertisers with Back to Back... - 21.Nov.2008 10:30:44 AM
|
|
|
tshinder
Posts: 47644
Joined: 10.Jan.2001
From: Texas
Status: online
|
Hi Matthew,
There really isn't an ungrade path from ISA2k to ISA 2006, other than documenting your rules and translating them to the new networking model used by the 2006 ISA firewall.
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
|
RE: ? About Deploying DNS Advertisers with Back to Back... - 21.Nov.2008 10:36:33 AM
|
|
|
spsmatthew
Posts: 2
Joined: 19.Nov.2008
Status: offline
|
Yeah...I figured that was probably the case. I have screenshots of all our rules, destination sets, etc. so that should be enough.
Any info on the number of NIC's needed for the deployment scenario I mentioned?
Regards,
Matthew
|
|
|
|
|
RE: ? About Deploying DNS Advertisers with Back to Back... - 25.Nov.2008 7:47:50 AM
|
|
|
tshinder
Posts: 47644
Joined: 10.Jan.2001
From: Texas
Status: online
|
Hi Matt,
On the front end firewall, you can have two or three NICs, depending on whether or not was want one or two anonymous access DMZs connected to that firewall.
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
