Thanks Tom. I had no idea that there were so many new MVP's.
Hi Amy,
Same here. I was exchanging some emails with Jason Fossen (who runs the www.isascripts.org site) and he mentioned that he was an ISA MVP, which I didn't know. That led me to check out the MVP site and I saw all those new people! Cool!
I still think that MS should get with it and force the LCS team to meet with the ISA team to hash out a native filter. Still glad someone is doing it.
Hi Amy,
I don't know if they've set any cost estimates yet. Right now they're most interested in getting beta testers. As an ISA MVP, I'm sure they'd be very happy to get you in the beta fast! However, from what I can tell, this is only for LCS SIP, and its not clear yet whether this will enable the holy grail of voice and video support.
The port scan logging is actually off by default in SBS as are all intrusion detection. If they’ve turned them on, then presumable they want the information. It’s more useful to point them to resources (as you’ve done) then to slam for it (as you’ve also done). Why blame folks for trying? It’s the people that go blindly along without asking questions that I worry about.
It wasn't meant as a slam. Rather, it was an attempt to help remove the FUD associated with port scans and provide some resources that they can use to learn about IDS. The problem is, as you know, there's an inordinate amount of FUD in the SBS consultancy space (present company excluded) and this was just my small contribution in trying to fix the problem.
Nice follow up blog post. Thanks for the reference to my blog. Sleuthing is a bit of an exageration. I think of it as stumbling around. The logic of the Microsoft site is somewhat mystifying to me.