ISA SERVER 2004ISA SERVER 2004

Group members :Group members :

Sagar Bhakta – [intro]Sagar Bhakta – [intro]

Orit Ahmed – [installation]Orit Ahmed – [installation]

Michael Wijaya [advantages]Michael Wijaya [advantages]

Rene Salazar - [features]Rene Salazar - [features]

INTRODUCTIONINTRODUCTIONMicrosoft Internet Security and Acceleration (ISA) Server 2004 Microsoft Internet Security and Acceleration (ISA) Server 2004

helps to improve security levels for your Microsoft applications through an helps to improve security levels for your Microsoft applications through an enhanced security architecture with application layer filteringenhanced security architecture with application layer filtering

fully integrated VPN capabilities fully integrated VPN capabilities

and comprehensive, extensible authentication mechanisms, such as RSA and comprehensive, extensible authentication mechanisms, such as RSA SecurID and RADIUSSecurID and RADIUS

ISA Server is designed to help users protect Microsoft applications, such as ISA Server is designed to help users protect Microsoft applications, such as the Exchange e-mail server, IIS (Internet Information Services) Web server the Exchange e-mail server, IIS (Internet Information Services) Web server and SharePoint collaboration toolsand SharePoint collaboration tools

regulating usage based on user, group, application, destination, schedule, regulating usage based on user, group, application, destination, schedule, and content type criteria. ISA Server is designed to work with Windows 2000 and content type criteria. ISA Server is designed to work with Windows 2000 and later operating systems and to take advantage of Windows security.and later operating systems and to take advantage of Windows security.

More on ISA serverMore on ISA server ISA Server 2004 contains a full-featured, application-layer-ISA Server 2004 contains a full-featured, application-layer-

aware firewall that helps protect organizations of all sizes from aware firewall that helps protect organizations of all sizes from attack by both external and internal threats.attack by both external and internal threats.

ISA Server 2004 performs deep inspection of Internet ISA Server 2004 performs deep inspection of Internet protocols such as Hypertext Transfer Protocol (HTTP), which protocols such as Hypertext Transfer Protocol (HTTP), which enables it to detect many threats that traditional firewalls enables it to detect many threats that traditional firewalls cannot detect. cannot detect.

In addition, a completely new user interface, wizards, In addition, a completely new user interface, wizards, templates, and a host of management tools help templates, and a host of management tools help administrators avoid common security configuration errors.administrators avoid common security configuration errors.

System System requirementsrequirements Personal computer with 300 megahertz or faster Pentium II-Personal computer with 300 megahertz or faster Pentium II-

compatible CPU running one of the following server compatible CPU running one of the following server operating systems: operating systems: Microsoft Windows 2000 Server or Windows 2000 Advanced Microsoft Windows 2000 Server or Windows 2000 Advanced

Server with Service Pack 4 or later Server with Service Pack 4 or later Windows 2000 Datacenter Server Windows 2000 Datacenter Server Windows Server 2003 Standard Edition Windows Server 2003 Standard Edition Windows Server 2003 Enterprise Edition Windows Server 2003 Enterprise Edition

256 megabytes of RAM 256 megabytes of RAM One network adapter, for communication with the internal One network adapter, for communication with the internal

network network One additional network adapter, modem, or ISDN adapter for One additional network adapter, modem, or ISDN adapter for

each additional network connected to the computer running each additional network connected to the computer running ISA Server ISA Server

One local hard-disk partition formatted with NTFS and 150 One local hard-disk partition formatted with NTFS and 150 megabytes of available space (additional disk space required megabytes of available space (additional disk space required for Web cache content) for Web cache content)

ISA Server comes in two editionsISA Server comes in two editions

Standard Edition and Enterprise Standard Edition and Enterprise Edition. Edition.

Standard Edition is a stand-alone server that supports up to four Standard Edition is a stand-alone server that supports up to four processors. processors.

Enterprise Edition is for large-scale deployments, server array Enterprise Edition is for large-scale deployments, server array support, multi-level policy, and computers with more than four support, multi-level policy, and computers with more than four processors. Licenses are based on the number of processors. processors. Licenses are based on the number of processors.

Installing ISA server 2004Installing ISA server 2004

Download the software from Download the software from

www.microsoft.com/isaserver/beta/www.microsoft.com/isaserver/beta/ default.asp default.asp

Double click on isaautorun.exeDouble click on isaautorun.exe

OR install the software from CDOR install the software from CD

In The case of ISA Server 2004In The case of ISA Server 2004

The internal network contains trusted The internal network contains trusted network services that the ISA Sever 2004 network services that the ISA Sever 2004 firewall must communicate with.firewall must communicate with.

Examples of such services includes DNS, Examples of such services includes DNS, DHCP, terminal services clients, and others.DHCP, terminal services clients, and others.

The firewall system policy is automatically The firewall system policy is automatically applied to internal network.applied to internal network.

Uncheck the box

Check

How do you see if ISA Server is How do you see if ISA Server is actually workingactually working

By creating an “all open” outbound By creating an “all open” outbound access policy that allow secure NAT access policy that allow secure NAT clients to access the internet. clients to access the internet.