Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win


Infrastructure Design with Microsoft Poxy Server or ISA Server

Posted on 2008-06-25
Medium Priority
Last Modified: 2011-10-03
My company going to setup a poxy server for internet security access control.
As i know, there have MS poxy server version two and ISA server 2006.
I am new to poxy server, any idea which one should i use?
And any idea on the infrastructure design with using poxy/ISA?

Current environment:
NT domain, will build up 2003 AD domain within this year.
Five office, HQ is at Hong Kong, others at China. Poxy server will put at HK office.
At HK office, we have a firewall, spam mail filter device, and will setup DMZ later.

Question by:dickchan
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2

Accepted Solution

Jason Yu earned 900 total points
ID: 21870919
ISA server 2006 can act both a firewall and a web proxy server.

More honest, i prefer to use ISA 2006 because it's powerful and can add one more layer of security of your network. It can cooperate with hardware firewall to deply application layer inspection. Ordinary, hardware firewall only do packets layer inspection.

You can refer Dr. Tom Shinder's book on isa for set up, his two isa books are very good handbook for isa admis.

Author Comment

ID: 21878069
Any idea on the book's name?
And i have a little bit worry about the OS security level when using ISA 2006 as the primary firewall conncting to internet. Pls correct me if i am wrong..  Micrsoft windows OS always had some bugs and security hole. Is it using a hardware firewall better if  being  the primary firewall which connecting to internet? thanks.

Expert Comment

by:Jason Yu
ID: 21879290
The book names are:

Dr. tom shinder's configuring ISA server 2004

Dr. Tom Shinder's ISA Server 2006 Migration Guide.

In fact, i have the same puzzle as you before i read these two books, but after I read these book, it solved my puzzles especial old preference for hardware firewall. When you install ISA 200X on you windows server, it will harden your os by closing all ports and change other settings automaticallly.

Read the electronical books first, then you will decide if you need buy it.

I have the electronical edition, if you want give me an email.
LVL 51

Assisted Solution

by:Keith Alabaster
Keith Alabaster earned 600 total points
ID: 21899719
To run ISA Server, you need a server that is running windows 2000 as a minimum - it will not install on Windows NT. Proxy 2 is a non-supported product but obviously st5ill runs on NT servers.

Reading books first is a good bet but personally I prefer Microsoft's own books.
There is not a book for ISA2006 as it was very close to the ISA2004 version. The MS Press mcse book is superb - just search on Amazon.com for the ISA Server 2004 self study


LVL 51

Expert Comment

by:Keith Alabaster
ID: 22052788
Thanks :)

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are times where you would like to have access to information that is only available from a different network. This network could be down the hall, or across country. If each of the network sites have access to the internet, you can create a ne…
Encryption for Business Encryption (https://en.wikipedia.org/wiki/Encryption) ensures the safety of our data when sending emails. In most cases, to read an encrypted email you must enter a secret key that will enable you to decrypt the email. T…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question