This is the continuation question from (http://www.experts-exchange.com/Security/Software_Firewalls/Enterprise_Firewalls/Cisco_PIX_Firewall/Q_22630039.html
I need to deploy ISA ASAP, can someone shed some lights?
In short, I need to setup ISA in PIX DMZ for OWA/OMA.
ISA (DMZ) --------------- PIX -------------- (inside) OWA, DC1, DC2, Exchange
ISA = W2K3 SP1 ISA 2006 Ent.
DC1 = DC, GC and DNS
DC2 = DC only
OWA = Exchange 2003 (front end) server w/ SP2, FQDN CA cert
Exchange = Exchange 2003 (backend) server w/ SP2
OWA has StarCom SSL CA. It used to be located in the DMZ and has moved back to Inside. Here are the questions:
1) Should ISA be the domain member server or standalone?
2) On the PIX, 443 is pointing to ISA from outside to DMZ now. What CA should I use? Should I use the OWA CA or apply the new one via IIS?
3) Can anyone provide the step-by-step setup for ISA 2006 (not ISA 2004) and OWA 2003 (not OWA 2007)?
4) Does ISA require IIS running in this case?