Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Needs help to install ISA 2006 STD
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Needs help to install ISA 2006 STD - 14.Apr.2008 3:16:13 PM
|
|
|
pg_isausa
Posts: 3
Joined: 24.Mar.2008
Status: offline
|
I'm new in ISA. My IP is 10.x.x.x. I’ve acquired one static IP also. I’m planning to deploy ISA 2006 Standard in one or two weeks time. My network is like DSLàW/less Router with DHCP, firewall and NAT enabledàLAN. My LAN consists of one box of DC with Windows 2003; other box is windows 2008 and Exchange 2007. DC box has one NIC. I’m planning to deploy ISA on DC. I need step by step help to configure the current LAN with ISA. I want all my internet traffic to pass through the ISA to secure LAN. I’ve also configured my SSL on windows 2008 box.
Someone's help for step by step guide will be greatly appreciated.
Thanks
PKG
|
|
|
|
|
RE: Needs help to install ISA 2006 STD - 15.Apr.2008 4:50:18 PM
|
|
|
pwindell
Posts: 782
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
|
ISA is not supported on a DC
ISA should be multihomed (2 nics)
DCs should never be multi-homed
ISA was designed to replace the existing "DSL router". There should just be a plain simple Layer2 DSL Modem (not router) between the ISA and the Internet. It also works 200% more dependable if the ISP has given you a Static IP number. A "sticky IP#" is not a true Static IP#, it is only a DHCP Reserved IP#. You can run the DSL Router outside of the ISA, but you have to understand and know how to deal with the fact that you have created a Back-to-Back DMZ between the ISA and the "router".
Most DSL Routers cost around $80,...ISA cost around $1200-$1400 plus Hardware,...guess what is more solid and secure.
Run ISA on a dedicated machine just for that purpose. It is a firewall product,..treat it just like you would a PIX, Checkpoint, SonicWall, Watchgaurd, or whatever,...you wouldn't be trying to run a DC on them.
Here are some links that might be of interest. On the first one you should be able to find some "Geting Started Guides" of some sort there.
Microsoft Internet Security & Acceleration Server: Home
http://www.microsoft.com/technet/isa/2006/default.mspx
ISA Firewall Dirty Dozen (FAQ)
http://www.isaserver.org/tutorials/ISA-Firewall-Dirty-Dozen-FAQ.html
Debunking the Myth that the ISA Firewall Should Not be a Domain Member
http://www.isaserver.org/tutorials/Debunking-Myth-that-ISA-Firewall-Should-Not-Domain-Member.html
ISA Firewall Fairy Tales - What Hardware Firewall Vendors Don't Want You to Know (v1.02)
http://www.isaserver.org/articles/2004tales.html
_____________________________
Phillip Windell
www.wandtv.com
|
|
|
|
|
RE: Needs help to install ISA 2006 STD - 16.Apr.2008 12:26:24 AM
|
|
|
pg_isausa
Posts: 3
Joined: 24.Mar.2008
Status: offline
|
Hi Phillip,
Thanks for your reply. I got some fact from your mail about ISA. I did not know that ISA can't be installed on DC.. I've a quick question. How can I check whether I've static IP or DHCP reserved from ISP ?? Is ther any special test or some utility avilable to determine it??
F Y I
I've been watching the same IP address (72.xxx.xxx.xx) on my Linksys Router consistently for last two years..
PKG
|
|
|
|
|
RE: Needs help to install ISA 2006 STD - 16.Apr.2008 9:50:44 AM
|
|
|
pwindell
Posts: 782
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
|
Call the ISP and ask them.
Even if the number doesn't change much that doesn't mean it is static,...static has to do with "means" by which you get it & configure it. Even dynamic IP# may rarely change, that isn't the main problem,..the main problem is that ISA doesn't do well with getting it's config via DHCP and (IMO) is not very dependable with PPPoE which is a second technology based on the dialup principles that is also dynamic and uses DHCP.
_____________________________
Phillip Windell
www.wandtv.com
|
|
|
|
|
RE: Needs help to install ISA 2006 STD - 16.Apr.2008 12:39:02 PM
|
|
|
pg_isausa
Posts: 3
Joined: 24.Mar.2008
Status: offline
|
Thanks for the reply..
Let me follow the instructions so far you led with the links and if I need any help I'll chase you soon..
Again thanks for all your guidence. Have a great day!!
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
