• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Why Two NICs for Firewall?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Cache] >> General >> Why Two NICs for Firewall? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Why Two NICs for Firewall? - 31.Mar.2005 3:49:00 PM   
big_dazza

 

Posts: 506
Joined: 24.Apr.2003
Status: offline
Tom,

could you tell me the reasons why ISA in FW/Integrated mode requires two NICs? What is the thinking behind it? Apologies for my ignorance, and thanks
Post #: 1
RE: Why Two NICs for Firewall? - 4.Apr.2005 12:01:00 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi BD,

The point is that a firewall needs two or more NICs for either physical or logical segmentation. If you don't have two NICs, is very simple to bypass the firewall since the hosts can change their gateway address to bypass the ISA firewall.

You can logically segment the network using vlan tagging. That creates multiple virtual NICs using a single physical NIC. Not as secure as physical segmentation, but better than a single-NIC deployment.

HTH,
Tom

(in reply to big_dazza)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Cache] >> General >> Why Two NICs for Firewall? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts