Solved

Infrastructure Design with Microsoft Poxy Server or ISA Server

Posted on 2008-06-25
5
519 Views
Last Modified: 2011-10-03
My company going to setup a poxy server for internet security access control.
As i know, there have MS poxy server version two and ISA server 2006.
I am new to poxy server, any idea which one should i use?
And any idea on the infrastructure design with using poxy/ISA?

Current environment:
NT domain, will build up 2003 AD domain within this year.
Five office, HQ is at Hong Kong, others at China. Poxy server will put at HK office.
At HK office, we have a firewall, spam mail filter device, and will setup DMZ later.


0
Comment
Question by:dickchan
  • 2
  • 2
5 Comments
 

Accepted Solution

by:
Jason Yu earned 300 total points
Comment Utility
ISA server 2006 can act both a firewall and a web proxy server.

More honest, i prefer to use ISA 2006 because it's powerful and can add one more layer of security of your network. It can cooperate with hardware firewall to deply application layer inspection. Ordinary, hardware firewall only do packets layer inspection.

You can refer Dr. Tom Shinder's book on isa for set up, his two isa books are very good handbook for isa admis.
0
 

Author Comment

by:dickchan
Comment Utility
Any idea on the book's name?
And i have a little bit worry about the OS security level when using ISA 2006 as the primary firewall conncting to internet. Pls correct me if i am wrong..  Micrsoft windows OS always had some bugs and security hole. Is it using a hardware firewall better if  being  the primary firewall which connecting to internet? thanks.
0
 

Expert Comment

by:Jason Yu
Comment Utility
The book names are:

Dr. tom shinder's configuring ISA server 2004

Dr. Tom Shinder's ISA Server 2006 Migration Guide.

In fact, i have the same puzzle as you before i read these two books, but after I read these book, it solved my puzzles especial old preference for hardware firewall. When you install ISA 200X on you windows server, it will harden your os by closing all ports and change other settings automaticallly.

Read the electronical books first, then you will decide if you need buy it.

I have the electronical edition, if you want give me an email.
0
 
LVL 51

Assisted Solution

by:Keith Alabaster
Keith Alabaster earned 200 total points
Comment Utility
To run ISA Server, you need a server that is running windows 2000 as a minimum - it will not install on Windows NT. Proxy 2 is a non-supported product but obviously st5ill runs on NT servers.


Reading books first is a good bet but personally I prefer Microsoft's own books.
There is not a book for ISA2006 as it was very close to the ISA2004 version. The MS Press mcse book is superb - just search on Amazon.com for the ISA Server 2004 self study

Keith



0
 
LVL 51

Expert Comment

by:Keith Alabaster
Comment Utility
Thanks :)
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
AWS has developed and created its highly available global infrastructure allowing users to deploy and manage their estates all across the world through the use of the following geographical components   RegionsAvailability ZonesEdge Locations  Wh…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now