I have a large enterprise environment. I also have many layers of defense....But I am changing a few things....I want your opinions..
There is the Pix.....then there is a Lightspeed Appliance that does IDS, Spam. Antivirus yada yada yada....(this is a new thing going in)...I have Websense....(its getting to expensive so its getting dumped)...I am changing that and using the Lightspeed for the rules based outgoing....but I want to stop everyone going out all ways to the Internet....hence the new spyware stuff and key loggers that are out there (thats where the lightspeed comes in).....
I want a Web Cache Server...Basic Proxy.....2 of the for fault tolerance....appliances were to expensive..I have ISA licenses....I already have an ISA out there for OWA...but now I want another in between the clients and the lightspeed.....so it goes this way
client---dns server---web proxy----lightspeed----pix---internet-----
one point of exit....
Now the question
Do I install the ISA as an Enterprise Policy and tie it into AD? Or do I leave it as stand alone and use and Array Policy? Also how do I make them failover?
I suck at ISA...my expertise lies more in AD and Exchange and I am now learning the deep secrets of SMS...But I need help with ISA..
I am a EE member so dont send me to web site links I have seen them all....
I want your IT advice
This is aprox 1300 or so users in a HiPPA and DOJ protected LAN....