Improve company productivity with a Business Account.Sign Up

x
?
Solved

ISA and mulitple roles

Posted on 2004-09-09
3
Medium Priority
?
261 Views
Last Modified: 2010-04-14
Hi all,

I have a couple of questions regarding deployment of some ISA servers...

Right now we have a ISA 2000 server doing OWA publishing....

What I want to know is can I have the same ISA server do publishing for internal network files (Intranet Info) that is actually stored in a whole separate Forest/Domain that we have created just for these files...

We created a separate Forest with a one way trust so that Vendors and such can access Files that are stored there. These files are placed there to protect our Internal County Domain from anything on the outside....

I was told that I would jeopordize the security filters in ISA if I was to do both on the same server....Both OWA publishing and Server Publishing...and therefore we wwe need another ISA server to do just the Web Publishing....
Is this true?

Doesnt ISA 2004 give me the ability to use multiple NICs to redirect traffic meant for different areas and the ability to scan the incoming URLs differently?

I also have a ISA Proxy planned for future deployment....but this is a separate issue...I dont want to combine the Proxy with anything else becasue the Proxy would actually sit behind our firewall on the inside.....

Thanks all

Dawne
0
Comment
Question by:pcbrat
  • 2
3 Comments
 
LVL 9

Accepted Solution

by:
jdeclue earned 2000 total points
ID: 12019623
You can certainly have 3 nics with different rules on each interface...

Nic1 attached to internet
Nic 2 attached to network and publishing OWA
Nic 3 attached to other network and publishing IIS server.

As far as security is concerned, any time you open up more ports to more machines in you internal network you are making a larger attack "footprint". But by adding a third NIC, you are creating a DMZ, a network seperate from your internal private network, and this is how it is typically done.

J

0
 
LVL 10

Author Comment

by:pcbrat
ID: 12019851
Thank you that is what I thought.

:)

Seeing that you are a Cluster expert I will be asking some Exchange and Windows 2003 cluster questions for verification...so look for my questions :)
Thanks
Dawne
0
 
LVL 9

Expert Comment

by:jdeclue
ID: 12019940
Okie Dokie, glad to be of help! ;)

J
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Importing Outlook PST contacts to Exchange Server can become a complicated task. Situations arise where an Exchange user is not able to import contacts from PST to Exchange Mailboxes in an efficient manner. Try SysTools Exchange Import to move conta…
When you have multiple client accounts to manage, it often feels like there aren’t enough hours in the day. With too many applications to juggle, you can’t focus on your clients, much less your growing to-do list. But that doesn’t have to be the cas…
To export Lotus Notes to Outlook PST or Exchange and Domino Server files to Exchange Server or PST files with ease, go for Kernel for Lotus Notes to Outlook conversion tool. Through the video, you can watch the conversion process. A common user with…

589 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question