Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Re-Creating ISA 2000 Rules on ISA 2006

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 General] >> General >> Re-Creating ISA 2000 Rules on ISA 2006 Page: [1]
Login
Message << Older Topic   Newer Topic >>
Re-Creating ISA 2000 Rules on ISA 2006 - 4.Sep.2008 11:53:39 AM   
grantdozier

 

Posts: 4
Joined: 30.Apr.2008
Status: offline 		My company currently uses an ISA 2000 server for web access among other duties. I have been tasked with building a new ISA 2006 server which will perform the same functions as the ISA 2000 server. I purchased the ISA 2006 migration guide, and while extremely informative, I am finding a number of terms that are drastically different between the two version of ISA server. Is there a location or information where I can gain insight in setting up the ISA 2006 to match the ISA 2000 server? As an example, one of the ISA 2000 rules refers to "Type" as being "Site and Content"; another refers to "Protocol"; and yet another refers to "IP Packet Filter" - I'm extremely new to this but don't understand, within ISA 2006, what/where these "Types" are defined or located...

Any and all help is appreciated!!
Post #: 1
RE: Re-Creating ISA 2000 Rules on ISA 2006 - 4.Sep.2008 2:21:04 PM   
paulo.oliveira

 

Posts: 820
Joined: 3.Jan.2008
From: Amazonas, Brazil
Status: offline 		Hi,

I think this will give you a better clue:
Upgrading to Microsoft Internet Security and Acceleration (ISA) Server 2004


Regards,
Paulo Oliveira.

(in reply to grantdozier)
Post #: 2
RE: Re-Creating ISA 2000 Rules on ISA 2006 - 5.Sep.2008 8:33:19 AM   
tshinder

 

Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Grant,

For outbound access, you create Access Rules. The Content Type is available in the Properties of the Access Rule.

For site access, you configure those in the URL Sets or Domain Name Sets.

There are no IP Packet Filters in 2006. Stateful packet inspection is now done on all interfaces, including VPN connections.

Protocols can also be defined within the rule.

There is a steep learning curve between ISA 2000 and ISA 2004/2006. Think about what you want in your firewall rules and then implement them in the new model. If you have any questions, don't hesitate to ask here.

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/

GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8

(in reply to paulo.oliveira)
Post #: 3
RE: Re-Creating ISA 2000 Rules on ISA 2006 - 5.Sep.2008 3:10:02 PM   
grantdozier

 

Posts: 4
Joined: 30.Apr.2008
Status: offline 		Thanks Tom!

I'm getting there... You are correct with your statement of the learning curve being steep - but ISA 2006 is still a much improved product over ISA 2000 and well worth the time/effort necessary to migrate/upgrade/convert - whichever is most appropriate!
Thanks again for all your help and for a great site and books!!

Grant

(in reply to tshinder)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 General] >> General >> Re-Creating ISA 2000 Rules on ISA 2006 Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts