• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

ISA 2004 w/Interscan 6 bypassing ISA

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Misc.] >> 3rd Party Add-ons >> ISA 2004 w/Interscan 6 bypassing ISA Page: [1]
Login
Message << Older Topic   Newer Topic >>
ISA 2004 w/Interscan 6 bypassing ISA - 18.Jan.2007 4:13:37 PM   
brentwood

 

Posts: 5
Joined: 18.Jan.2007
Status: offline
I am kinda new to ISA 2004 so please bear with me.

I have ISA 2004 with Interscan VirusWall 6 installed (Same box).

I seem to have a problem where my clients are bypassing the Viruswall software.

ISA is sitting behind a PIX, and has the single NIC template deployed.
I am getting confused how to get my clients to autodiscover the ISA and go to the listening port for ISVW.

In ISA under networks, under internal properties I have the web proxy set to 80.
Auto discovery is set to port 3458.
All desktops are set to auto discover, I have DHCP set with the 252 option for port 3458.
Servers are hard coded because of DNS only using port 80 for wpad.

The way I understand it is the Auto discovery is just the port that the wpad file is handed out on.

How do I configure the wpad file to use a port for Internet access, and have the ISA serve use a different port to listen for requests.

Is the local host object (represents the ISA server) supposed to have in its web proxy settingconfigured?  right now it is disabled. 

thanks

Post #: 1
RE: ISA 2004 w/Interscan 6 bypassing ISA - 19.Jan.2007 4:27:20 AM   
Guest
Hi Brent,
it's not going to work like so.
First:
get down Interscan from ISA, put on more NIC on ISA.
ISA is a firewall not a proxy. Make sure you run it like so.
the PIX will not provide the level of protection ISA does not even in a dream.
If you want to run another applications on ISA like an antivirus or a another filter you have to make sure that this is an add-on for ISA like for example InterScan WebProtect for ISA.
InterScan VirusWall is designed to run on a different box not on a firewall like ISA.
Next:
Don't mess with the proxy settings and with autodiscovery port if you don't know what you are doing. Leave them to default.
for this you may want to read the below article:
http://www.isaserver.org/articles/ISA2004_ClientAutoConfig.html
Have fun.

(in reply to brentwood)
  Post #: 2
RE: ISA 2004 w/Interscan 6 bypassing ISA - 27.Feb.2007 3:35:14 PM   
rambay

 

Posts: 10
Joined: 14.Jul.2005
Status: offline
Hi,

Interscan Viruswall can be used with Isa server but not on the isa machine.. Behind the isa, you can install interscan viruswall as an proxy server (ftp, http)..

http://www.trendmicro.com/ftp/documentation/guides/isvw601en-win-b6076_QSG.pdf this manual can help you.

For Smtp scanning in Interscan you must publish interscan machine as an smtp server on the isa one, and on interscan machine smtp settings (relayable domain names and internal mail server addresses) must be configured.

In this scenario your clients proxy setup must include interscan address information and port settings.

In addition to the above reply, you can distribute proxy settings with group policy if your environment is ad active directory one.

But interscan system requirements may require another capable server..

(in reply to brentwood)
Post #: 3

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Misc.] >> 3rd Party Add-ons >> ISA 2004 w/Interscan 6 bypassing ISA Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts