i have the book now for almost a week and must say, it's a great book with a lot of information, background and sampels withs are easaly adapt in real live situations.
it's even greater then i thougt, becouse it explains a litle about scripting a black list url. im currently have build a script that's import over a million of listed urls witch can be downloaded from blacklists.com one time for free after that you have to pay fair a annual fee.
there is only one drawback on having a million of listed urls and domains. backingup(XML) the ISA server takes several hours to make.
the bautie is the performance is'nt slower then with no rules applied, traffic is still fast bypassing the isa server.(this is just wat the book say but hey i have to found out be myself)
Well Tom and Dabi, i only say one more thing keep on going with this great work.
Sneak preview was great, one thing I still wonder: Missing in Action: Gone But Not Forgotten said that active caching was left out from ISA Server 2004, still, I can find cache > properties > active caching tab and old settings for that feature. So, active caching or not with ISA 2004?
RE: Discussion about Chapter 2 in the book - 27.Dec.2004 12:34:00 PM
Hi, i have configured ISA 2004 firewall for site-to-site VPN for my Head Office network and I need ISA to be domain controller for branch network. From Branch network I can access to Main office network, but not from ISA, from Main office I can access into Branch network, but not to ISA. ISA IP's 184.108.40.206. - (external) local tunnel end point 172... - ISP 192.168.0.0 - internal 220.127.116.11.. - remote tunnel end point 192.168.10.0 - remote network All allow polisy rules was added If i add route 192.168.10.0 mask 255.255.255.0 18.104.22.168 Networks become not availaible email@example.com
Do you have a site to site VPN connecting the local and remote networks? If so, there is no problem connecting the sites and pinging the remote site from the local site and the local site from the remote site.
RE: Discussion about Chapter 2 in the book - 5.Jan.2005 6:18:00 AM
Yes, I have the site to site VPN connecting the local and remote networks. The problem is I cannot connect from the Local Host (ISA Server computer) to the remote site throught VPN though I can connect to the remote site from any other workstations in my local network (all these computers are connecting throught the ISA Server computer). ____________________________________________ This trace and ping for remote network from ISA Server computer: Tracing route to [192.168.10.248] over a maximum of 30 hops:
1 61 ms 72 ms 137 ms 22.214.171.124 2 692 ms 761 ms 636 ms 126.96.36.199 3 * * 188.8.131.52 reports: Destination host unreachable.
Request timed out. Reply from 184.108.40.206: Destination host unreachable. Reply from 220.127.116.11: Destination host unreachable. Request timed out. ______________________________________________ And this trace and ping results from any other computer:
Tracing route to [192.168.10.248] over a maximum of 30 hops:
1 <10 ms <10 ms <10 ms EXCHANGE [192.168.0.1] 2 * * * Request timed out. 3 * * * Request timed out. 4 ^C
Pinging 192.168.10.248 with 32 bytes of data:
Reply from 192.168.10.248: bytes=32 time=796ms TTL=126 Reply from 192.168.10.248: bytes=32 time=985ms TTL=126 Reply from 192.168.10.248: bytes=32 time=937ms TTL=126
It's in the chapter on configuring access rules and firewall policy
Treat yourself to a Christmas present and get the book! What other site do you get the author to give interactive help on his book? (OK, Debi wrote half the book, but I'll support her stuff too)
Hello Tom, I purchased the book and looked up the chapter. I found the discussion on hotmail on page 564. However, it's about blocking access to Hotmail. In the quotation I posted earlier, it said "Now all users can access Hotmail via an easily-configured firewall rule without any need for special configuration on either the client or the firewall."
The quote seems to be talking about having to set something up to allow access to Hotmail (not about blocking). Do I misunderstand the text?