iraq it -> RE: From where to start the FWC? (25.Jan.2006 6:03:40 PM)
Understanding the ISA 2004 Firewall Client
The Firewall client software is an optional client component that can be installed on any supported Windows operating system to provide enhanced security and accessibility. The Firewall client software provides the following enhancements to Windows clients:
- Allows strong user/group-based authentication for all Winsock applications using the TCP and UDP protocols
- Allows user and application information to be recorded in the ISA firewall's log files
- Provides enhanced support for network applications, including complex protocols requiring secondary connections
- Provides "proxy" DNS support for Firewall client machines
- Allows you to publish servers requiring complex protocols without the aid of an application filter (although not 'officially' supported in the new ISA firewall)
- Makes the network routing infrastructure transparent to the Firewall client machine
Read More on :
generally i recommend using the combination of the 3 clients type ,here is why:
Multiple ISA Server clients can be used on a single computer. This allows the ISA Server client to obtain the best benefits of all the clients.
Configuring the client computer as a SecureNAT client enables basic Web access and caching, as well as allows the client to utilize application filters to access other objects on the Internet. Although the SecureNAT client cannot provide authentication, access rules can restrict client access by IP address, schedule, protocol, and destination requested.
Adding the Web proxy client information to the Web browser provides more direct, efficient access to the Web proxy service. (SecureNAT clients use the firewall service and Web protocols are then passed to the Web proxy service.) Web proxy clients can also provide authentication information if required to do so by the ISA Server.
By installing the Firewall client, authentication will always be passed to the ISA Server, and the client can directly inform the firewall service of the needs of the application it is using.
Thanks for the link.
When i use the Internet as WP then i enable the FW, is that mean the user will switch to FW client mode? and is that mean the user will switch to FW client setting or use the WP rules?
When i enable the FW, is that mean i will have more access to protocols or i will have the same privillages as WP and the change just the features that mentions in the link above?