ISA Placement Question
Posted on 2006-10-20
Currently we have an ISA server setup in a DMZ on a PIX 515. It use to be a frontend for OWA, but now I would like to use it to monitor web use, and block websites that users shouldn't be using while at work. I understand that in order for this to happen I will need to have the ISA between the PIX and the rest of the network, but we use our PIX for a Site to Site tunnel and I don't want to block traffic going through the tunnel to our servers on our network. Any ideas on the best way to accomplish my goals?