Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Moving from ISA to Cisco Router

Posted on 2006-06-22
6
Medium Priority
?
243 Views
Last Modified: 2010-03-18
We have a server running Microsoft Small Business Server 2003.  We are getting a Cisco 1811 dual WAN router.  Since we will be using the router we do not need ISA, right?  If so, how do we turn ISA off?  Or, what pieces of ISA do we need to turn off and how?  Also, could someone give me a quick explanation of what ISA is and does?  Is it just a firewall?

*Please do not assume that I know what you are talking about.  I do not have much network training/experience.

Any help would be greatly appreciated.  Thank you.
0
Comment
Question by:mgiuliano
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 13

Expert Comment

by:prashsax
ID: 16964036
It is not necessary to switch off ISA just beacuse now you are getting a router.

You ISA could still work as firewall and proxy server, if you are happy with it.

But, if you want to use router as a firewall, then you may want to disable the ISA.

Although ISA would allow you to control internet access more easily and effectively rather than a router.

ISA is a firewall and a Cache proxy server. It allow you to control internet access based on userid, computer IP address, protocol etc.

Router would allow you to control internet based on IP address and ports only. It cannot do it on per user basic. ISA can do it.
0
 

Author Comment

by:mgiuliano
ID: 17004733
We want to use the router for the firewall, VPN, and the dual LAN function.  We are using proxy.  If we disable ISA does that mean the proxy is disabled too, and all the workstations have to uncheck the proxy setting in the internet options?

ISA has more features, but which is more secure?  Do you think it is easy for someone to change settings on the router who has no Cisco training/experience?

Do you recommend staying with ISA?
0
 
LVL 13

Expert Comment

by:prashsax
ID: 17004801
You need some cisco training to manage routers.

If you are good with ISA, you can stay with it.

ISA can do whatever you want to do with router.

ISA supports VPN.

ISA 2004 can run dual LAN in DMZ configuration.


0
NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

 

Author Comment

by:mgiuliano
ID: 17020618
I appreciate your help with ISA and routers.  I think we are going to go with the router.  Since we are going to use the router as the firewall, how do we disable ISA?
0
 
LVL 13

Accepted Solution

by:
prashsax earned 1000 total points
ID: 17020676
If you still require ISA to work as Proxy server, you can let it run.
You can configure your ISA to a single NIC mode. In this mode ISA will work as Proxy server and not as firewall.
This link will tell you how to configure ISA with Single NIC.
http://www.isaserver.org/tutorials/unihomedisa1.html


Now, I assume your default gateway on all client machines and server is set to ISA.
Change it, and assign routers LAN interface IP as your default gateway.

Then you can control access using access-list on router as well.



0
 

Author Comment

by:mgiuliano
ID: 17053802
Thank you.   I have not tried this yet but I will when we get the router.
0

Featured Post

New benefit for Premium Members - Upgrade now!

Ready to get started with anonymous questions today? It's easy! Learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Want to learn how to record your desktop screen without having to use an outside camera. Click on this video and learn how to use the cool google extension called "Screencastify"! Step 1: Open a new google tab Step 2: Go to the left hand upper corn…

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question