Solved

ISA firewall client messed things up

Posted on 2006-10-31
2
182 Views
Last Modified: 2013-11-16
So I just installed ISA 2004 on SBS 2003.  Supposedly an installation where things could go smoothly since SBS 2003 will configure it for you.  A load of BS.

After installing ISA, none of the users on my network have access to internet.  So I create a rule to allow all the internals to get outbound access to the externals.  Well that works but i fuigure that now I am not very well protected, so read about the Firewall client and install that on one of the machines.  Set it to apply the default settings and tell it to configure the browser.

So I then test by turning off this rule I created to see if I get inter net with the new configurations.  Nothing.  What a pain. So I turn the rue back on.  Now My existing mapped drives don't work.  I;m told  that there is no domain controller that can authenticate me.  What on earth is going on?

Tried uninstalling the Firewall Client, but no go.  I'mm assuming it made changes, but did not put them back after uninstalling.  How do I get my settings back?

Considering uninstalling ISA but now wondering if that's just gonna make things worse.  
0
Comment
Question by:colin911
2 Comments
 

Expert Comment

by:winsoc
Comment Utility
I would highly recommend completely uninstalling that stuff (ISA) and using a real firewall.
By the wording of your question it looks like you have some severe infrastructure issues, are you doing this in a production environment?
0
 
LVL 5

Accepted Solution

by:
cjtraman earned 500 total points
Comment Utility
One need to understand how the ISA 2004 works before deploying the server in production. ISA is ICSA certified firewall and it is working pretty fine. No need to change the firewall. Firewall client is meant to provide proxy services to client server application applications like outlook. ISA 2004 has by default enabled deny all policy. If you disable the rule you created, obviously it would not allow you to browse the Internet. Moreover, for security purpose, you need to use secureNAT client. However, web based proxy is more than enough for your requirement.
ISA 2004 works as well like other ICSA certified firewall clients.
You can check http://www.isaserver.org for all details regarding step-by-step configurations.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Never store passwords in plain text or just their hash: it seems a no-brainier, but there are still plenty of people doing that. I present the why and how on this subject, offering my own real life solution that you can implement right away, bringin…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now