• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 210
  • Last Modified:

ISA Placement Question

Currently we have an ISA server setup in a DMZ on a PIX 515.  It use to be a frontend for OWA, but now I would like to use it to monitor web use, and block websites that users shouldn't be using while at work.  I understand that in order for this to happen I will need to have the ISA between the PIX and the rest of the network, but we use our PIX for a Site to Site tunnel and I don't want to block traffic going through the tunnel to our servers on our network.  Any ideas on the best way to accomplish my goals?

Thanks
0
tfa8rva
Asked:
tfa8rva
  • 3
  • 3
  • 2
1 Solution
 
Keith AlabasterEnterprise ArchitectCommented:
Are you using two nic's in the ISA (like an internal firewall) or just using it as a proxy device? Also, which version of ISA are you using?
0
 
tfa8rvaAuthor Commented:
We are using ISA 2004, and more specificly V4.0.2163.213.  It has two nics, one going to the PIX and one going to the internal network, but currently it isn't being used for anything.
0
 
prueconsultingCommented:
Simply point web traffic towards the ISA internal NIC for monitoring web access . This can be done as simply as checking the proxy server box in your browser and pointing it to the ISA server .

0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
Keith AlabasterEnterprise ArchitectCommented:
I'll leave it to you then Prue. If the user still has an issue after you have finished I'll jump back in and go through the ISA side.
0
 
tfa8rvaAuthor Commented:
Prue, I will give that a shot to see if it works.  Thanks.
0
 
tfa8rvaAuthor Commented:
Thanks, that works.  I was making it out to be harder than it really was.
0
 
prueconsultingCommented:
Glad to hear..
0
 
Keith AlabasterEnterprise ArchitectCommented:
Me too. Means I can leave the ISA qestions to someone else now and get on with some of the others :)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Microsoft Office 2010

This course will introduce you to the interfaces and features of Microsoft Office 2010 Word, Excel, PowerPoint, Outlook, and Access. You will learn about the features that are shared between all products in the Office suite, as well as the new features that are product specific.

  • 3
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now