• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Newbie to ISA

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 General] >> Installation and Planning >> Newbie to ISA Page: [1]
Login
Message << Older Topic   Newer Topic >>
Newbie to ISA - 16.Aug.2006 3:33:08 AM   
GPT

 

Posts: 3
Joined: 16.Aug.2006
Status: offline
Hi there,

We havent deployed ISA in our organisation before - previously weve used squid.
We have a situation now however where we need to us a windows based app with AD integration.
The requirement is for a Proxy with cache on a transparent bridge.
My Question is whether or not ISA 2006 will intercept http traffic and route it through its proxy & cache over two bridged NIC's.
Overview of situation:
We are a part of a larger global company WAN and just have a requirement for AD auth. and Http cache for our part of the network and have no need for firewalling. The plan is ISA on a Win2k3 machine with the OS bridging the two NIC's with ALL traffic pasing through this box, but with all HTTP traffic to be routed through the proxy cache. Both sides of the bridge are in the same IP address range and the bridge is the only joining point to the rest of the global network.
Will ISA allow this config??
If so, how do we go about it?? At the moment we seem to have no luck in figuring it out!!!!!!!!!!!!!!!!

Thanks in advance!
Graeme.
Post #: 1
RE: Newbie to ISA - 16.Aug.2006 3:14:28 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Graeme,

No.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to GPT)
Post #: 2
RE: Newbie to ISA - 16.Aug.2006 11:02:28 PM   
GPT

 

Posts: 3
Joined: 16.Aug.2006
Status: offline
Hi Tom,

Thanks for your reply, good to get a definte answer!
Any reason why not, or am i expecting too much from ISA?

Cheers,
Graeme

(in reply to tshinder)
Post #: 3
RE: Newbie to ISA - 17.Aug.2006 3:24:12 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Grame,

ISA just doesn't transparent firewalling. I sure wish it idid, though.

Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to GPT)
Post #: 4
RE: Newbie to ISA - 18.Aug.2006 1:14:40 AM   
GPT

 

Posts: 3
Joined: 16.Aug.2006
Status: offline
Thanks Tom,

Are you aware of any Windows based s/w that allow this?

Thanks in advance.
Graeme.

(in reply to tshinder)
Post #: 5
RE: Newbie to ISA - 18.Aug.2006 2:53:58 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Graeme,

None that I'm aware of -- would be great to find some though.

Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to GPT)
Post #: 6
RE: Newbie to ISA - 27.Aug.2006 12:49:05 AM   
Prodigus

 

Posts: 13
Joined: 17.Feb.2004
From: Houston
Status: offline
Are you just wanting to use ISA as a Proxy server to route all of your internet access through while authenticatiing the users with AD?

I'm not sure about 2006 yet as I haven't started messing with it but in previous versions you wouldn't need to bridge.
In fact in a multi-nic configuration you would not be able to have both sides on the same segment.

There is however a single NIC mode which is used for ISA in a Proxy/Cache only mode.  Keep in mind thta doing this would probably only allow you to Proxy outbound traffic and not tings like OWA coming in but it's an option if I'm understanding your question correctly.

Not sure if they fixed it in 2006 or not but I did have some issues with doing transparent authentication in 2004.  If a machine that attempted to use the Proxy server was not a part of my AD domain it would just deny them since the rules say to deny them.  Basically my setup allows certain AD groups of users to use the internet.  MS supplied me with a vb script that solved that issue.  Now the only issue I'm left with is non-domain users/machines have to put their credentials in as domainname/username.


Best of Luck

(in reply to GPT)
Post #: 7

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 General] >> Installation and Planning >> Newbie to ISA Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts