[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

ISA and mulitple roles

Posted on 2004-09-09
3
Medium Priority
?
260 Views
Last Modified: 2010-04-14
Hi all,

I have a couple of questions regarding deployment of some ISA servers...

Right now we have a ISA 2000 server doing OWA publishing....

What I want to know is can I have the same ISA server do publishing for internal network files (Intranet Info) that is actually stored in a whole separate Forest/Domain that we have created just for these files...

We created a separate Forest with a one way trust so that Vendors and such can access Files that are stored there. These files are placed there to protect our Internal County Domain from anything on the outside....

I was told that I would jeopordize the security filters in ISA if I was to do both on the same server....Both OWA publishing and Server Publishing...and therefore we wwe need another ISA server to do just the Web Publishing....
Is this true?

Doesnt ISA 2004 give me the ability to use multiple NICs to redirect traffic meant for different areas and the ability to scan the incoming URLs differently?

I also have a ISA Proxy planned for future deployment....but this is a separate issue...I dont want to combine the Proxy with anything else becasue the Proxy would actually sit behind our firewall on the inside.....

Thanks all

Dawne
0
Comment
Question by:pcbrat
  • 2
3 Comments
 
LVL 9

Accepted Solution

by:
jdeclue earned 2000 total points
ID: 12019623
You can certainly have 3 nics with different rules on each interface...

Nic1 attached to internet
Nic 2 attached to network and publishing OWA
Nic 3 attached to other network and publishing IIS server.

As far as security is concerned, any time you open up more ports to more machines in you internal network you are making a larger attack "footprint". But by adding a third NIC, you are creating a DMZ, a network seperate from your internal private network, and this is how it is typically done.

J

0
 
LVL 10

Author Comment

by:pcbrat
ID: 12019851
Thank you that is what I thought.

:)

Seeing that you are a Cluster expert I will be asking some Exchange and Windows 2003 cluster questions for verification...so look for my questions :)
Thanks
Dawne
0
 
LVL 9

Expert Comment

by:jdeclue
ID: 12019940
Okie Dokie, glad to be of help! ;)

J
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Organisation is organized in a pattern to flow the day to day business, every application and system is interdepended on each other and when very important “Exchange Server downtime” happened.
The Relationships Diagram is a good way to get an overall view of what a database is keeping track of. It is also where relationships are defined. A relationship specifies how two tables connect to each other. As you build tables in Microsoft Ac…
Free Data Recovery software is an advanced solution from Kernel Tools to recover data and files such as documents, emails, database, media and pictures, etc. It supports recovery from physical & logical drive after a hard disk crash, accidental/inte…
Suggested Courses
Course of the Month8 days, 7 hours left to enroll

608 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question