Solved

Sonicwall in parallel with ISA Server

Posted on 2008-06-09
3
289 Views
Last Modified: 2012-06-27
My company has a SonicWall that they want to use as a gateway to filter web based viruses and spyware. We may also move the VPN from our ISA Server to the Sonicwall. I plan to connect a switch to our cable modem and run the web traffic to our LAN. all of the other IP traffic will go through the ISA Server.Does anyone have any opinions on this setup. Is there a better way to do this by running the Sonicwall in a series with the ISA Server. My company has about 100 users,
0
Comment
Question by:eelder100
3 Comments
 
LVL 6

Accepted Solution

by:
Nyah247 earned 50 total points
ID: 21772967
I have an environment similar to your as far as users are concerned.  I wouldn't run any traffic from the cloud directly to your LAN.  I would put your sonicwall in front of ISA then attach ISA's external nic to the sonicwall's internal interface.   Essentially you are creating a protected DMZ of sorts.  Set the internal interface of the sonicwall as the gateway for ISA. Connect ISA's internal nic to your LAN.  Make sure there is no gateway on ISA's internal and DNS is set to you internal DNS servers.  The ISA external nic will have a dmz address, subnet and the address of the sonicwall's internal interface as the gateway...no DNS servers...netbios disabled as well.  Make sure you use the cmd and the route add command to add your internal networks.  

Anyway...  Shinder has a couple good books that tell you how to setup the ISA in detail.  Worth a look.

After ISA is setup...You should be able to then do all your filtering with the sonicwall and still gain the massive benefits of using ISA.
0
 

Expert Comment

by:OSLREP
ID: 22645263
Well done!
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now