Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Multiple DMZ zone on ISA Server 2006

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> DMZ >> Multiple DMZ zone on ISA Server 2006 Page: [1]
Login
Message << Older Topic   Newer Topic >>
Multiple DMZ zone on ISA Server 2006 - 2.Jun.2008 4:36:31 AM   
simonchtan

 

Posts: 7
Joined: 29.May2008
Status: offline 		Hi,

I have read the configuration of the ISA server, though it stated a tri-home server.
I am trying my luck here to check if there is any possible of having more than 2 DMZ if the possiblity of having multiple Physical NIC on ISA server is not an issue.

If i have double post this question please kindly direct me to the correct post.
thanks.
Post #: 1
RE: Multiple DMZ zone on ISA Server 2006 - 2.Jun.2008 4:42:58 AM   
Jason Jones

 

Posts: 2121
Joined: 30.Jul.2002
From: United Kingdom
Status: offline 		ISA can support as many networks as you need and each network will require a dedictaed NIC unless you use some form of VLAN tagging or trunking.

I have setup systems with 4/5 DMZs, so can be confident you should be able to do what you need...however, you will need to do most of the work yourself as the default templates don't include details for this type of setup...

_____________________________

Jason Jones (MVP)

Silversands Limited http://www.silversands.co.uk
My Blog: http://blog.msfirewall.org.uk/

Get our NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8

(in reply to simonchtan)
Post #: 2
RE: Multiple DMZ zone on ISA Server 2006 - 2.Jun.2008 4:49:08 AM   
simonchtan

 

Posts: 7
Joined: 29.May2008
Status: offline 		Hi Jason,

thanks, Do you by any chance have some reading document on this section.
I may required to set up to 3 DMZ zone on a single server.

Is there any other requirement i need to be aware of such as the system resource?

Simon

(in reply to Jason Jones)
Post #: 3
RE: Multiple DMZ zone on ISA Server 2006 - 2.Jun.2008 4:56:53 AM   
Jason Jones

 

Posts: 2121
Joined: 30.Jul.2002
From: United Kingdom
Status: offline 		Tom has done some good articles on this site, normally with two DMZs (anonynous access and authenticated access) - these should be a good starting point...

Additional networks should provide negligible resource impact compared to the same number of hosts in one large DMZ.

Use the search feature (top right of the home page) and use "perimeter" as a keyword. The following article is a good example:

http://www.isaserver.org/tutorials/Creating-Multiple-Security-Perimeters-Multihomed-ISA-Firewall-Part1.html

Enjoy!

Cheers

JJ

_____________________________

Jason Jones (MVP)

Silversands Limited http://www.silversands.co.uk
My Blog: http://blog.msfirewall.org.uk/

Get our NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8

(in reply to simonchtan)
Post #: 4
RE: Multiple DMZ zone on ISA Server 2006 - 2.Jun.2008 5:03:23 AM   
simonchtan

 

Posts: 7
Joined: 29.May2008
Status: offline 		Thank again Jason,

I will read up the link provided.


(in reply to Jason Jones)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> DMZ >> Multiple DMZ zone on ISA Server 2006 Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts