Re: ISA 2K Recommendation Firewall vs Integrated Mode
From: Jim Harrison [MSFT] (jmharr_at_online.microsoft.com)
Date: 07/06/04
- Next message: Jim Harrison [MSFT]: "Re: event id = 14120 source = Microsoft Web Proxy"
- Previous message: TheLord: "RE: Firewall service unavailable !!"
- In reply to: sandaruwan: "ISA 2K Recommendation Firewall vs Integrated Mode"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 5 Jul 2004 17:40:40 -0700
Hi Sandaruwan,
I believe you've confused publishing "RPC over HTTP" with publishing RPC.
RPC over HTTP is supported (and fully functional) in Cache mode because it's still HTTP, even though encrypted RPC commands are
"tunneled" within.
Also, regarding the "NAT" statement, ISA doesn't perform "NAT" for any web proxy-handled traffic.
The session is terminated at the ISA and a brand new one established from the ISA to the upstream server.
HTH,
-- Jim Harrison [ISASE] Read the help, books and articles! This posting is provided "AS IS" with no warranties, and confers no rights. "sandaruwan" <lewiss@zillione.com> wrote in message news:2729901c4629e$2a40c860$a301280a@phx.gbl... hi bred it pretty clear that if you want to use rpc over http to work you have to implement isa server on the integrate mode or firewall mode. cache mode does not support any natting. so will be able to publish server like exchange. and i would like u to give advice is that no matter how small the company is security is security.so always implemented on secured way. cache mode support only 3 protocols integrate mode support all the security implementations with all the protocols that u want to allow or deny firewall mode doesnot include caching mode. so that is u have to implement to secure the system where if u have publi servers to be secured behid the isa server. i hope u found the anser sandaruwan >-----Original Message----- >I am completing a SBS 2003 server install, which the network was previously SBS 2000. I am installing ISA 2000, and have a question about which mode I should install it in. Firewall or Intergrated Mode. We have always used Integrated mode in the past, basically out of default, but the network I am setting this server up for is small (probably under 10 computers, not much Internet traffic (manufacturing)). My question is: What are the effects or advan/disadvan for Firewall Mode versus Integrated? I will need to publish a terminal server, exchange 2003 (rpc over http), and all that other good SBS 2003 stuff. thanks. >. >
- Next message: Jim Harrison [MSFT]: "Re: event id = 14120 source = Microsoft Web Proxy"
- Previous message: TheLord: "RE: Firewall service unavailable !!"
- In reply to: sandaruwan: "ISA 2K Recommendation Firewall vs Integrated Mode"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
