Re: best network setup?
- From: Aus <Aus@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 31 Mar 2005 15:23:01 -0800
Hah! yes I did actually put 'proper' in quotes so it wasn't taken literally.
Maybe I'll rephrase to 'a more traditional descrete firewall implemenatation'.
I would say that if ICSA dont test something doesn't mean its no good - it
means they haven't tested it(!) Looking at the list, their tested products
aren't that up to date but its a good place to validate ones choice. I only
recommend Netscreen as it happens - but, whew - close one; I used to use a
shoe box holding al dente sphagetti with a hole at each side as my firewall.
As I say, I'll post this as a separate question to see if there are any
'proper' (!)explanations to favour one method as compared to another.
"SuperGumby [SBS MVP]" wrote:
> 'proper' firewall eh?
>
> Is this 'proper' firewall you're referring to certified to the same level as
> ISA? You can check here
> http://www.icsalabs.com/html/communities/firewalls/newsite/cert2.shtml
> if your firewall ain't listed it ain't good enough.
>
> ISA can only act as a firewall in a minimum 2 NIC configuration. (as can any
> true firewall)
>
> MOST large companies run a multilegged firewall. Internal (leg 1), external
> (leg 2) and optional DMZ (leg 3).
>
> In SBS we break a basic creed of firewall implementation, hosting the
> firewall on the Domain Controller. I know of no security incident which can
> be traced to this being the basic fault. ISA on SBS has proven itself a
> reliable and safe option.
>
> "Aus" <Aus@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:EB710370-F1BA-493A-A2A8-C61DCDA85A75@xxxxxxxxxxxxxxxx
> >I think you find may SBS people automatically say 2 nics but I think this
> >is
> > a messy approach - no large company would do things this way so the
> > hardware
> > firewall/router to a single NIC tends to be the preferred option for me. I
> > have yet to see the actual advantages of 2 nics over a 'proper' firewall -
> > it
> > seems to complicate things and you dont want that with SBS. Maybe we need
> > to
> > be enlightened?! (perhaps a separate thread for that question..)
> >
> > Not sure if nic teaming is relevant - you could never saturate a 100Mb
> > link
> > continuously on most networks - let alone a 1Gb link - most networks dont
> > run
> > like that.
> >
> > "Brian Murphy" wrote:
> >
> >> Hi,
> >>
> >> I just purchased a server along with a copy of Microsoft SBS 2003 STD
> >> edition. I would like to know what the best network setup is for SBS??
> >> Should I go with 1 or 2 nic cards in the server? Should I use a router?
> >>
> >> Thanks in advance!
> >>
> >>
> >>
>
>
>
.
- References:
- best network setup?
- From: Brian Murphy
- RE: best network setup?
- From: Aus
- Re: best network setup?
- From: SuperGumby [SBS MVP]
- best network setup?
- Prev by Date: Re: Recommendation for USB 2.0 PCI card for PowerEdge 2600?
- Next by Date: Re: Dell 2850 issue - (new problem)
- Previous by thread: Re: best network setup?
- Next by thread: Re: best network setup?
- Index(es):
Relevant Pages
|
Loading
