Re: back to back DMZ
- From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
- Date: Tue, 21 Aug 2007 12:34:59 -0500
I've been wondering if they want to reduce my job down to something a
trained money could do,....hmmm.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
"Jim Harrison (ISA SE)" <jmharr@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:%23VPNbsA5HHA.536@xxxxxxxxxxxxxxxxxxxxxxx
You can use monkeys and buckets if it pleases you.. :-)
It's an accepted fact that a layered firewall is a good thing, but as with
all such concepts, it depends on how they're deployed.
if you deploy your Cisco with an "allow all traffic" policy, it's pretty
much wasted money (and LOTS of it, too!).
--
Jim Harrison (ISA SE)
This posting implies no warranty and confers no rights.
http://catb.org/~esr/faqs/smart-questions.html
"jimi hendrix" <jimihendrix@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2585B15D-A250-43EE-BEDE-8C2AAFF6FE4E@xxxxxxxxxxxxxxxx
OKay I am out of that issue, one last question:
Can I use a Cisco ASA 5520 as external firewall and the ISA2006 as
internal
firewall
As in a back to back DMZ ISA configuration,..
thanks in advance
jimi
"Jim Harrison (ISA SE)" wrote:
See if this helps:
http://www.microsoft.com/technet/isa/2006/deployment/exchange.mspx
Ultimately, the decision to place a host in or behind the DMZ (or to
build
a
DMZ at all) rests with you and your design skills.
--
Jim Harrison (ISA SE)
This posting implies no warranty and confers no rights.
http://catb.org/~esr/faqs/smart-questions.html
"jimi hendrix" <jimihendrix@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2B3FF357-0492-4DFD-858A-35D7EA90B849@xxxxxxxxxxxxxxxx
Okay fair, I got your points now,..
but what does microsoft say about this,
what does microsoft recommend,..?
"Phillip Windell" wrote:
"jimi hendrix" <jimihendrix@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:941D50CF-E147-4502-8D9C-B15E7CC6CFF8@xxxxxxxxxxxxxxxx
How secure is this , when the servers are on my LAN then a hacker is
right
in
my internal network,..
or does isa 2006 makes it work,..
Then what good is the DMZ? The Servers still have to talk to the
LAN,..if
he has control of the servers he can communicate with whatever they can
communicate with.
Your *real* security lies with the Servers being used,...not the
Firewall
making them available, or the DMZ you stick them in.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or
Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html
Troubleshooting Client Authentication on Access Rules in ISA Server
2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc
Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp
Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------
.
- References:
- Re: back to back DMZ
- From: Asher_N
- Re: back to back DMZ
- From: Phillip Windell
- Re: back to back DMZ
- From: Jim Harrison \(ISA SE\)
- Re: back to back DMZ
- From: jimi hendrix
- Re: back to back DMZ
- From: Jim Harrison \(ISA SE\)
- Re: back to back DMZ
- Prev by Date: Need to VPN from ISA to ISA
- Next by Date: Re: Need to VPN from ISA to ISA
- Previous by thread: Re: back to back DMZ
- Next by thread: Upgrading from ISA 2004 STD to 2004 Enterprise
- Index(es):
Relevant Pages
|
