ISA server on a virtual machine

Folks

Planing to install ISA server on a VM and deploy exchange server behind it.

Wondering if ISA server VM needs  dedicated network interfaces for internal and external networks  ... any ideas ?
LVL 10
akhalighiAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
pwindellConnect With a Mentor Commented:
Virtualize your ISA or Forefront TMG servers (Video, Jim Harrison)
http://technet.microsoft.com/en-us/edge/virtualize-your-isa-or-forefront-tmg-servers.aspx 
0
 
Antonio VargasMicrosoft Senior Cloud ConsultantCommented:
It does not need dedicated NIC's, but for security reasons you can dedicate a NIC for the external network. Also you need that a physical NIC has physical and dedicated access to a DMZ or external network
0
 
AkhaterCommented:
the external NIC of ISA needs to be dedicated, the internal one can be shared
0
 
bryant_bucklandConnect With a Mentor Commented:
We have our ISA Server setup with a DMZ dedicated network and then another virtual NIC for the internal.  For best security practices you really want it like this.  You could NAT from the outside firewall to the internal interface and then port forward on a separate internal IP on the same virtual NIC, but you are really defeating the security aspect of ISA to a great degree by doing this.  You can also trunk all traffic to the ESX host/Hyper V host on one physical NIC and then still add separate virtual adapters as well if the case is your host does not have separate NIC's.  In our case our host has one physical connection for the console, one for our external network (non-trunked/non-vlan tagged) and then another NIC for all the internal production VLAN tagged networks.
0
All Courses

From novice to tech pro — start learning today.