Re: 2 NIC to 1 Best Practice ?

Tech-Archive recommends: Speed Up your PC by fixing your registry

---

• From: Colin <Colin@xxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Sun, 13 Jul 2008 11:21:04 -0700

---

Hi,

Teneo, I'm uninstalling ISA 2004 because I need to implement a UTM solution
in addidtion to the IPSec VPN requirement - some of the legit websites that
my client has visited has tried to download unwanted executables - driveby
downloads etc. You are correct in that I can't support ISA on a SBS box but
then I'd be doing them a severe injustice saying that ISA can do what the
Watchguard Firebox is going to do for them. ISA on a domain controller,
although MS sold it as good, is not an ideal solution (hence the removal with
SBS 2008 - ISA on a separate box is ICSA certified, on SBS it's not). 2
enterprise class firewalls = grief. There's no need for the 'get someone
better' crap.

Regards Colin.

"Teneo" wrote:

I would ask WHY are you uninstalling... They have a terrific product and if
you cant support ISA then you are doing them an injustice by uninstalling.

You state 'they now require IPSec VPN' implying they cant have this with ISA
2004 ?

You uninstall ISA then you have made them LESS secure, keep ISA and add the
hardware firewall also.

Be honest with them, say you cant support ISA and will find them someone who
can.






"Dave" <please@xxxxxxxxxxxxxxxxxx> wrote in message
news:demdnaHLzscp2eTVnZ2dnUVZ_qvinZ2d@xxxxxxxxxxxxxxx

I recently moved from 2 NIC's to 1 and it was suggested that I first remove
the IP of the extenral NIC before I disabled it. I believe I also had to
change the gateway of the remaining SBS NIC to point to the internal NIC of
the edge fireall.

-Dave

"Colin" <Colin@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:3C90BF56-9F34-4269-AA08-C89D6FA20CC3@xxxxxxxxxxxxxxxx

Hi all,

I need to uninstall ISA 2004 from a client's SBS 2003 box and install a
hardware firewall instead (they now require IPSec VPN). Is there a 'Best
Practice' for doing this ? My plan is to backup, uninstall ISA (which
will
presumable take SP3 with it ?), reboot if required, disable the external
NIC,
re-run the CEICW and then implement the hardware firewall. This will all
be
done off line until the F/W is installed. Can anyone see anything I've
missed
here ? TIA.

Regards Colin.

.

---

• References:
  • Re: 2 NIC to 1 Best Practice ?
    • From: Dave
  • Re: 2 NIC to 1 Best Practice ?
    • From: Teneo

• Prev by Date: Re: Connecting a remote workstation to a domain
• Next by Date: Re: Update order
• Previous by thread: Re: 2 NIC to 1 Best Practice ?
• Next by thread: Re: 2 NIC to 1 Best Practice ?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Internet wizard does not work I need a workaround it ... Since you no longer have two network cards ... You must uninstall ISA it simply won't work without two cards ... wizard and install ISA back and re import the rules, ... (microsoft.public.windows.server.sbs) RE: Need to remove ISA from SBS ... I understand that you want to uninstall ISA ... Do you have single or double NIC on your SBS? ... This newsgroup only focuses on SBS technical issues. ... (microsoft.public.windows.server.sbs) Re: How can I disable ISA server in SBS 2000, aside from uninstalling ... Administrative Tools | Services) and stop the Microsoft ISA Server Control, ... you should be able to uninstall ISA 2000 from ... (microsoft.public.backoffice.smallbiz2000) Re: Cant Upgrade From SBS 2000 To SBS 2003 Because Of ISA 2000 ... By deleting ISA I was able to get SBS 2003 to install. ... uninstall ISA and install it later suggested that I use the range of "From" ... (microsoft.public.backoffice.smallbiz2000) RE: ISA with a hardware firewall? ... to the mail server. ... Can ISA talk to a hardware firewall for site-to-site VPN? ... Exchange 2003 Server behind ISA 2004 with a DSL internet provider. ... (microsoft.public.isaserver)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.sbs  > 2008-07