Re: OK ,So no ZA...how to integrate ISA into existing enviornment
From: Darkeyce (darkeyce_at_yahoo.com)
Date: 04/03/04
- Next message: David Wang [Msft]: "Re: OWA unauthorized"
- Previous message: Peter Mylett: "CAn't type"
- In reply to: CZ: "Re: OK ,So no ZA...how to integrate ISA into existing enviornment"
- Messages sorted by: [ date ] [ thread ]
Date: Sat, 03 Apr 2004 08:47:55 GMT
On Wed, 31 Mar 2004 21:45:53 -0800, "CZ" <CZ@no99spam.com> wrote:
Thanks a bunch for the clear response. You've given me a bunch of
things to think about.
>>> I just installed SBS2k3 in a small office...gotta love the
>straightforward install. But here is the question.
>A number of people had Zone Alarm on their desktops and
>laptops (it's not free by the way). If I install ISA
>server from the Premium CD I then have to put the ISA
>client on all the desk/laptops Yes?
>Fine, But what happens when these people leave the office
>and try and use their laptops from home...are they now
>unprotected? Assuming I removed ZA when I install the ISA
>Client.
>
>BigC:
>ISA's clients (Firewall Client & Web Proxy client setup) do not provide
>protection directly, they redirect packets to ISA which provides the
>protection.
>Generally, you want to run the ISA clients, though you do not have to in a
>non-default setup.
>
>Re: Zone Alarm:
>Leave it on the portables, and setup the LAN subnet in the Trusted Zone of
>ZA.
>This SBS2k3 domain ws is running both of ISA's clients and ZA free.
>
>Also, think about the security of your portables when they are used outside
>of the LAN:
>AV software with auto-updates enabled.
>Frequent AV disk scans.
>Use a Trojan detector (I use The Cleaner).
>Discuss offsite security issues with each portable user.
>
>
>
- Next message: David Wang [Msft]: "Re: OWA unauthorized"
- Previous message: Peter Mylett: "CAn't type"
- In reply to: CZ: "Re: OK ,So no ZA...how to integrate ISA into existing enviornment"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
