isa server 2004 group members : sagar bhakta – [intro] orit ahmed – [installation] michael...
TRANSCRIPT
ISA SERVER 2004ISA SERVER 2004
Group members :Group members :
Sagar Bhakta – [intro]Sagar Bhakta – [intro]
Orit Ahmed – [installation]Orit Ahmed – [installation]
Michael Wijaya [advantages]Michael Wijaya [advantages]
Rene Salazar - [features]Rene Salazar - [features]
INTRODUCTIONINTRODUCTIONMicrosoft Internet Security and Acceleration (ISA) Server 2004 Microsoft Internet Security and Acceleration (ISA) Server 2004
helps to improve security levels for your Microsoft applications through an helps to improve security levels for your Microsoft applications through an enhanced security architecture with application layer filteringenhanced security architecture with application layer filtering
fully integrated VPN capabilities fully integrated VPN capabilities
and comprehensive, extensible authentication mechanisms, such as RSA and comprehensive, extensible authentication mechanisms, such as RSA SecurID and RADIUSSecurID and RADIUS
ISA Server is designed to help users protect Microsoft applications, such as ISA Server is designed to help users protect Microsoft applications, such as the Exchange e-mail server, IIS (Internet Information Services) Web server the Exchange e-mail server, IIS (Internet Information Services) Web server and SharePoint collaboration toolsand SharePoint collaboration tools
regulating usage based on user, group, application, destination, schedule, regulating usage based on user, group, application, destination, schedule, and content type criteria. ISA Server is designed to work with Windows 2000 and content type criteria. ISA Server is designed to work with Windows 2000 and later operating systems and to take advantage of Windows security.and later operating systems and to take advantage of Windows security.
More on ISA serverMore on ISA server ISA Server 2004 contains a full-featured, application-layer-ISA Server 2004 contains a full-featured, application-layer-
aware firewall that helps protect organizations of all sizes from aware firewall that helps protect organizations of all sizes from attack by both external and internal threats.attack by both external and internal threats.
ISA Server 2004 performs deep inspection of Internet ISA Server 2004 performs deep inspection of Internet protocols such as Hypertext Transfer Protocol (HTTP), which protocols such as Hypertext Transfer Protocol (HTTP), which enables it to detect many threats that traditional firewalls enables it to detect many threats that traditional firewalls cannot detect. cannot detect.
In addition, a completely new user interface, wizards, In addition, a completely new user interface, wizards, templates, and a host of management tools help templates, and a host of management tools help administrators avoid common security configuration errors.administrators avoid common security configuration errors.
System System requirementsrequirements Personal computer with 300 megahertz or faster Pentium II-Personal computer with 300 megahertz or faster Pentium II-
compatible CPU running one of the following server compatible CPU running one of the following server operating systems: operating systems: Microsoft Windows 2000 Server or Windows 2000 Advanced Microsoft Windows 2000 Server or Windows 2000 Advanced
Server with Service Pack 4 or later Server with Service Pack 4 or later Windows 2000 Datacenter Server Windows 2000 Datacenter Server Windows Server 2003 Standard Edition Windows Server 2003 Standard Edition Windows Server 2003 Enterprise Edition Windows Server 2003 Enterprise Edition
256 megabytes of RAM 256 megabytes of RAM One network adapter, for communication with the internal One network adapter, for communication with the internal
network network One additional network adapter, modem, or ISDN adapter for One additional network adapter, modem, or ISDN adapter for
each additional network connected to the computer running each additional network connected to the computer running ISA Server ISA Server
One local hard-disk partition formatted with NTFS and 150 One local hard-disk partition formatted with NTFS and 150 megabytes of available space (additional disk space required megabytes of available space (additional disk space required for Web cache content) for Web cache content)
ISA Server comes in two editionsISA Server comes in two editions
Standard Edition and Enterprise Standard Edition and Enterprise Edition. Edition.
Standard Edition is a stand-alone server that supports up to four Standard Edition is a stand-alone server that supports up to four processors. processors.
Enterprise Edition is for large-scale deployments, server array Enterprise Edition is for large-scale deployments, server array support, multi-level policy, and computers with more than four support, multi-level policy, and computers with more than four processors. Licenses are based on the number of processors. processors. Licenses are based on the number of processors.
Installing ISA server 2004Installing ISA server 2004
Download the software from Download the software from
www.microsoft.com/isaserver/beta/www.microsoft.com/isaserver/beta/ default.asp default.asp
Double click on isaautorun.exeDouble click on isaautorun.exe
OR install the software from CDOR install the software from CD
In The case of ISA Server 2004In The case of ISA Server 2004
The internal network contains trusted The internal network contains trusted network services that the ISA Sever 2004 network services that the ISA Sever 2004 firewall must communicate with.firewall must communicate with.
Examples of such services includes DNS, Examples of such services includes DNS, DHCP, terminal services clients, and others.DHCP, terminal services clients, and others.
The firewall system policy is automatically The firewall system policy is automatically applied to internal network.applied to internal network.
How do you see if ISA Server is How do you see if ISA Server is actually workingactually working
By creating an “all open” outbound By creating an “all open” outbound access policy that allow secure NAT access policy that allow secure NAT clients to access the internet. clients to access the internet.