Solved

ISA server on a virtual machine

Posted on 2010-11-12
4
645 Views
Last Modified: 2012-08-14
Folks

Planing to install ISA server on a VM and deploy exchange server behind it.

Wondering if ISA server VM needs  dedicated network interfaces for internal and external networks  ... any ideas ?
0
Comment
Question by:akhalighi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 15

Expert Comment

by:GreatVargas
ID: 34120760
It does not need dedicated NIC's, but for security reasons you can dedicate a NIC for the external network. Also you need that a physical NIC has physical and dedicated access to a DMZ or external network
0
 
LVL 49

Expert Comment

by:Akhater
ID: 34120766
the external NIC of ISA needs to be dedicated, the internal one can be shared
0
 

Assisted Solution

by:bryant_buckland
bryant_buckland earned 50 total points
ID: 34121207
We have our ISA Server setup with a DMZ dedicated network and then another virtual NIC for the internal.  For best security practices you really want it like this.  You could NAT from the outside firewall to the internal interface and then port forward on a separate internal IP on the same virtual NIC, but you are really defeating the security aspect of ISA to a great degree by doing this.  You can also trunk all traffic to the ESX host/Hyper V host on one physical NIC and then still add separate virtual adapters as well if the case is your host does not have separate NIC's.  In our case our host has one physical connection for the console, one for our external network (non-trunked/non-vlan tagged) and then another NIC for all the internal production VLAN tagged networks.
0
 
LVL 29

Accepted Solution

by:
pwindell earned 75 total points
ID: 34122072
Virtualize your ISA or Forefront TMG servers (Video, Jim Harrison)
http://technet.microsoft.com/en-us/edge/virtualize-your-isa-or-forefront-tmg-servers.aspx 
0

Featured Post

Free eBook: Backup on AWS

Everything you need to know about backup and disaster recovery with AWS, for FREE!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Read this checklist to learn more about the 15 things you should never include in an email signature.
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question