Solved

ISA and mulitple roles

Posted on 2004-09-09
3
249 Views
Last Modified: 2010-04-14
Hi all,

I have a couple of questions regarding deployment of some ISA servers...

Right now we have a ISA 2000 server doing OWA publishing....

What I want to know is can I have the same ISA server do publishing for internal network files (Intranet Info) that is actually stored in a whole separate Forest/Domain that we have created just for these files...

We created a separate Forest with a one way trust so that Vendors and such can access Files that are stored there. These files are placed there to protect our Internal County Domain from anything on the outside....

I was told that I would jeopordize the security filters in ISA if I was to do both on the same server....Both OWA publishing and Server Publishing...and therefore we wwe need another ISA server to do just the Web Publishing....
Is this true?

Doesnt ISA 2004 give me the ability to use multiple NICs to redirect traffic meant for different areas and the ability to scan the incoming URLs differently?

I also have a ISA Proxy planned for future deployment....but this is a separate issue...I dont want to combine the Proxy with anything else becasue the Proxy would actually sit behind our firewall on the inside.....

Thanks all

Dawne
0
Comment
Question by:pcbrat
  • 2
3 Comments
 
LVL 9

Accepted Solution

by:
jdeclue earned 500 total points
Comment Utility
You can certainly have 3 nics with different rules on each interface...

Nic1 attached to internet
Nic 2 attached to network and publishing OWA
Nic 3 attached to other network and publishing IIS server.

As far as security is concerned, any time you open up more ports to more machines in you internal network you are making a larger attack "footprint". But by adding a third NIC, you are creating a DMZ, a network seperate from your internal private network, and this is how it is typically done.

J

0
 
LVL 10

Author Comment

by:pcbrat
Comment Utility
Thank you that is what I thought.

:)

Seeing that you are a Cluster expert I will be asking some Exchange and Windows 2003 cluster questions for verification...so look for my questions :)
Thanks
Dawne
0
 
LVL 9

Expert Comment

by:jdeclue
Comment Utility
Okie Dokie, glad to be of help! ;)

J
0

Featured Post

Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
In this step by step tutorial with screenshots, we will show you HOW TO: Enable SSH Remote Access on a VMware vSphere Hypervisor 6.5 (ESXi 6.5). This is important if you need to enable SSH remote access for additional troubleshooting of the ESXi hos…
This video discusses moving either the default database or any database to a new volume.
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now