Solved

ISA 2004

Posted on 2006-07-19
4
361 Views
Last Modified: 2013-11-16
Is there a "standard" set of policies that allows ISA 2004 to function in a basic edge firewall configuration?  I am new at this and I'm concerned that I am missing critical policies or perhaps opening ISA up to much.

Wes
0
Comment
Question by:hmcnasty
  • 3
4 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
ID: 17145395
No such thing really. By selecting the edge firewall template you can select whether you want to start with restricted or full access but the default policy allows all outgoing, blocks all incoming. The default policy does not, by default, allow outgoing traffic from the local host (ISA server itself).

If you can explain what you are looking to achive I can likely assist with the necessary policies.
For example,

Allow all web traffic (http & https) for all users except for web sites in the *.sex.com domain
Allow all outgoing DNS and SMTP traffic
Deny all traffic to ip address x.y.z.d

Allow incoming email to the exchange server
Allow Outlook web access etc etc

0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 17173517
Any update?
0
 

Author Comment

by:hmcnasty
ID: 17178538
Yeah,  it was this same as the other  on my other segment.  Since I had  ISA on my domain box it messed everything up.  I seem to have it ok now but I'm sure I'll have some questions.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 17179002
Well done; you'll soon be an ISA guru :
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Windows Filtering Blocking some port 80 Event 5152 2 103
Access shared drive during VPN session 9 108
palo alto VM series in AWS 3 105
Linksys LRT 224 forward 3 42
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question