RE: Microsoft ISA Server

["B. Scott Harroff" <Scott.Harroff () att net>]

We use the ISA servers primarily as cache servers.  We require domain
authentication prior to using the server so we can track traffic by user
ID.  We are not using any filters on the ISA servers.  Their "external"
NIC ends up in a DMZ behind OpenBSD firewalls which provide the inbound
outbound filtering.

If your used to iptables / ipchains or ipf or pf on linux/unix, you'll
find the ISA GUI rather akward.  To some, the layering and entering data
into different layered screens for filtering is undesirable.  I've also
found it difficult to do a dump of "show me how all the rules interact
together", where as with iptables / chains / ipf / pf its easy to top
down see whats happening and why.

 

-----Original Message-----
From: firewall-wizards-admin () nfr com
[mailto:firewall-wizards-admin () nfr com] On Behalf Of
RWoerner () dor state ne us
Sent: Wednesday, June 19, 2002 9:37 AM
To: firewall-wizards () nfr com
Subject: [fw-wiz] Microsoft ISA Server

We are looking at possibly using Microsoft's ISA Server as our
organization's firewall.
There are few reviews of it and it doesn't appear that it is used by
many
organizations.
Is anyone on the list using it?
Does anyone have an opinion on it?
How well does it work as a firewall?
What are its pros and cons?

Any insights would be most appreciated.

Ron Woerner, CISSP
Information Security Officer
Nebraska Department of Roads
P.S.  My instincts say "don't trust Microsoft", however I want to be
fair.

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards