Solved

Sonicwall in parallel with ISA Server

Posted on 2008-06-09
3
293 Views
Last Modified: 2012-06-27
My company has a SonicWall that they want to use as a gateway to filter web based viruses and spyware. We may also move the VPN from our ISA Server to the Sonicwall. I plan to connect a switch to our cable modem and run the web traffic to our LAN. all of the other IP traffic will go through the ISA Server.Does anyone have any opinions on this setup. Is there a better way to do this by running the Sonicwall in a series with the ISA Server. My company has about 100 users,
0
Comment
Question by:eelder100
3 Comments
 
LVL 6

Accepted Solution

by:
Nyah247 earned 50 total points
ID: 21772967
I have an environment similar to your as far as users are concerned.  I wouldn't run any traffic from the cloud directly to your LAN.  I would put your sonicwall in front of ISA then attach ISA's external nic to the sonicwall's internal interface.   Essentially you are creating a protected DMZ of sorts.  Set the internal interface of the sonicwall as the gateway for ISA. Connect ISA's internal nic to your LAN.  Make sure there is no gateway on ISA's internal and DNS is set to you internal DNS servers.  The ISA external nic will have a dmz address, subnet and the address of the sonicwall's internal interface as the gateway...no DNS servers...netbios disabled as well.  Make sure you use the cmd and the route add command to add your internal networks.  

Anyway...  Shinder has a couple good books that tell you how to setup the ISA in detail.  Worth a look.

After ISA is setup...You should be able to then do all your filtering with the sonicwall and still gain the massive benefits of using ISA.
0
 

Expert Comment

by:OSLREP
ID: 22645263
Well done!
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question