Re: ISA serv 2004 one to one NAT
From: ABH (andyspamfee_at_hotmail.com)
Date: 10/26/04
- Next message: Robert Lacroix: "ISA 2004: Turn off web proxy filter for VPN connections"
- Previous message: Gary J: "Firewall service won't start"
- In reply to: Lucas Schick: "Re: ISA serv 2004 one to one NAT"
- Next in thread: Phillip Windell: "Re: ISA serv 2004 one to one NAT"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 26 Oct 2004 22:39:57 +0100
"Lucas Schick" <lucas@abc-computers.com> wrote in message
news:a6dcd78c.0410261139.3d634195@posting.google.com...
> really care what they want to call it. If Microsoft really wants to
> compete with the Checkpoints and Pix's of the world, I just think 1 to
> 1 NAT'ing is a basic function of a FIREWALL, which is what ISA is
> supposed to be.
I can only agree 100%
No matter what the technicalities and terminologies, if Microsoft want
ISA2004 to sell into the market place that currently has Checkpoint
installed then it really needs to add traditional 1:1 NAT with configurable
translation rules (like FW1).
We are in the (much slower than we hoped) process of replacing FW1 with
ISA2004 and have learned that some of what we do with Checkpoint simply
isn't possible on the Microsoft product.
As a result our single FW1 box is now being replaced by ISA2004, as our
primary Internet firewall, and an additional dedicated NAT router to connect
some of our PCs to a separate private network which needs 1:1 NAT to treat
our PCs as local (licencing and security is based on the IP address).
-- Andy
- Next message: Robert Lacroix: "ISA 2004: Turn off web proxy filter for VPN connections"
- Previous message: Gary J: "Firewall service won't start"
- In reply to: Lucas Schick: "Re: ISA serv 2004 one to one NAT"
- Next in thread: Phillip Windell: "Re: ISA serv 2004 one to one NAT"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
