Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Unihomed Server Publishing Issues
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Unihomed Server Publishing Issues - 28.Aug.2004 6:43:00 AM
|
|
|
ctcald
Posts: 4
Joined: 30.Jul.2004
From: Coasta Rica
Status: offline
|
Hi Tom,
I have a unihomed ISA 2000 Server in my DMZ used for publishing OWA over SSL. My primary firewall is a PIX 515 with 3 legs and I would also like to publish Sharepoint over SSL on the same box.
IÆve researched your articles on unihomed configurations and have this configuration working in a lab environment, similar to production without the 3 legged PIX. I had to create additional IP addresses on my single NIC and binded each one to a Web Listener which redirects SSL communications to 2 different servers in the LAN, OWA and SPS.
IÆm not able to get this configuration functioning on the production network. My concern is the PIX 515 3 legged firewall and the unihomed server configured in Cache Mode.
Have you run or heard about problems with multi-interfaced firewall compatibilities with ISA 2000. I know this config will work with ISA 2004, am I better off going 2004 and why?
Also, in one of your notes in the forums, http://forums.isaserver.org/ultimatebb.cgi?ubb=get_topic;f=4;t=000522, you mentioned Server Publishing Rules donÆt work with the unihomed config. Is this true?
Has anyone tried this and experienced the same issues?
|
|
|
|
|
RE: Unihomed Server Publishing Issues - 29.Aug.2004 6:11:00 PM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi C,
You're definitely better off with the new ISA firewall. First, is it *much more secure* than a PIX! Use the PIX *only on the front end* so that you can protect your critcial resources by putting the ISA firewall on the back end. More hacked networks run PIX than any other firewall in the world! And for good reason -- PIX is a simple packet filter and not a stateful filtering and stateful application layer inspection firewall. The ISA firewall is.
HTH,
Tom
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
