Re: Firewalls

Tech-Archive recommends: Speed Up your PC by fixing your registry

From: John (john_at_nospam.com.au)
Date: 02/16/05 

Date: Wed, 16 Feb 2005 22:32:13 +1100

One nic installed. I understand the one nic mode, two nic mode.

The objective is to install the hardware firewall without installing ISA.

I have just learned that the firewall is a proxy dns, so I should only need
to point the gateway on the pc's
to it, right?

If this just were a nat router on the same subnet, what would be the best
way to configure this without isa installed?

I know that dns should point to the server. I have seen the primary dns
point to sbs and the secondary to
and an external ip - can this cause problems?

"Marina Roos [SBS-MVP]" <marina@roos.nodontwantspam.nl.com> wrote in message
news:O60crlAFFHA.2828@TK2MSFTNGP09.phx.gbl...
> Hi John,
>
> How many nics in the server? DNS should always point to the server IP.
You
> shouldn't need to change anything on the clients if you have set them to
> obtain an IP and DNS automatically from the SBS DHCP server.
> You can always install ISA, but only with 2 nics it is in integrated mode.
> With 1 nic you only get the cache mode.
>
> --
> Regards,
>
> Marina
> Microsoft SBS-MVP
> One of the Magical M&M's
>
> "John" <john@nospam.com.au> schreef in bericht
> news:eIxI219EFHA.2180@TK2MSFTNGP12.phx.gbl...
> > I have a client who insists on using a hardware firewall (netgear
FVS318).
> > At the moment they have
> > a Linux server doing this with IPcop software on the SBS 2000 server.
They
> > don't have ISA server
> > installed, or at least it looks like the don't. They do have exchange
and
> > SQL.
> >
> > Question is what is the best way to install this hardware firewall and
if
> > anyone has any particular experience
> > with this device or similar. i.e. should I change the gateway of the
> clients
> > and what about DNS.
> >
> > In the past I have installed hardware routers and pointed pc's gateway
and
> > secondary DNS to the device, but I
> > found this not to work to well because the dns server. Ideally I would
> like
> > to use ISA or at least as a cache server
> > but alot of reworking would be required - this may be stage two.
> >
> > Any advice would be appreciated.
> >
> >
>
>

Relevant Pages

  • Re: Isa Server 2006
    ... the only one with two nics. ... machine that is not the ISA SERVER?? ... Get rid of the DSL box and physically replace it with the ISA ... DNS & WINS 192.168.1.1 ...
    (microsoft.public.isaserver)
  • Re: SBS2003 R2 After ISA2004 Installed Intranet web sites fail
    ... My test system did not ohave TOE just on single on board Broadcom. ... The NICs are broken. ... It doesn't matter what you do with or without ISA, ... systems and install good old 3com cards and everything works like a dream. ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS2003 R2 After ISA2004 Installed Intranet web sites fail
    ... I don't believe you can use ISA *and* TOE enabled nics, so at the least you'd need to disable that nic feature. ... systems and install good old 3com cards and everything works like a dream. ... ended up installing Intel PCIe Server card for the LAN and Intel PCIe ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2003 with ISA 2004 and EX2003 on dual gateway network
    ... It seems like the ISA server is blocking all replication and/or RPC ... Said RPC sver is unavailable and it could be a DNS lookup ... A thought strikes me about completing the install of ISA. ... the SBS CEICW, are you ...
    (microsoft.public.windows.server.sbs)
  • Re: WPAD and Manual Proxy server setting for IE (for internal acce
    ... DNS entry. ... machine anywhere on the LAN (including the ISA) that is not your AD/DNS ... You either put the AD/DNS on both nics or put it on just ... isp inc isp DNS server. ...
    (microsoft.public.isa)