Hello Guys. I'm very new in ISA server, in my job there was a guy to manage the servers and now he is gone, so I'm trying to understand how the system works here, we have ISA 2004, and in the firewall policy I can see lot of rules but for me is a mess or there is no order. I want somebody to give me an idea about the order of the rules or which basic rules are missing or are not necessary. The rules we have are:
Firewall PolicyActionProtocols 1. McAfee Allow All outbound traffic 2. Block pages Deny HTTP, HTTPS, HTTPS Server 3. Internet Full Access Allow DNS, DNS Server, HTTP, HTTPS, HTTPS Server, OWA CB, Port 995, Port 81
4. our domain name (Internal) Allow DNS, DNS Server, HTTP, HTTPS, HTTPS Server, Port 995, Port 81 5. WEB Allow HTTP 6. DNS Server Allow DNS, HTTP, HTTPS 7. OWA Allow HTTP 8. Internal Services Allow All outbound traffic 9. W32.conficker Deny W32.conficker 10. Outbound DNS Allow DNS 11. Port 81 Allow OWA CB, Port 81
Posts: 2244
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
Move the 10. Outbound DNS to the top of the list. Edit the "From" so that only the Domain controllers are allowed to make outbound DNS queries.
Remove 6. DNS Server Remove the DNS Protocol from all other Rules
Add the ISP's DNS or whatever external DNS you are using to the Forwarders List in the DNS Service Config on the Domain Controllers. Point all machines (ALL) DNS settings tot he Domain Controllers
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA Server 2004 Firewall] >> General >> Firewall Policy 
Firewall Policy - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread