We are putting the finishing touches on our AD Test Lab. We have a Nokia 440 Firewall running Checkpoint FW-1 NG with 8 interfaces. We just built and Exchange 2003 Cluster and now need to figure out how we're going to set up our front/back end topology. From the reading I've been doing, it appears that ISA 2000 and Exchange 2003 work hand in hand with the new Exchange features (RPC/HTTP, OWA, etc..). We have a DMZ off of the CheckPoint FW allocated for an ISA server (originally was planning on putting an Exchange 2003 front end server there). My confusion is, can I use ISA with CheckPoint? I like the benefits of Layer 7 screening (for RPC vulnerabilities, etc..) but I know the CheckPoint Platform has to stay.
Can they work together?
I've heard of a unihomed caching only ISA server with Checkpoint, but will that only do OWA screening? What about RPC/HTTP feature?
Has anyone been in this situation before with this hardware setup? Also, my ISA server is actually a VMWare ESX server virtual machine. Is that going to cause any issues? I've allocated 1gb of RAM for the VM but am wondering, will I need more than 1 NIC? Can I set up a multi-homed VM in VMware?
Any recommendations would be appreciated.
Thanks
Can they work together?
I've heard of a unihomed caching only ISA server with Checkpoint, but will that only do OWA screening? What about RPC/HTTP feature?
Has anyone been in this situation before with this hardware setup? Also, my ISA server is actually a VMWare ESX server virtual machine. Is that going to cause any issues? I've allocated 1gb of RAM for the VM but am wondering, will I need more than 1 NIC? Can I set up a multi-homed VM in VMware?
Any recommendations would be appreciated.
Thanks