Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Hardware Firewall in Front of ISA Server

Status
Not open for further replies.
kilt

kilt

Technical User
Nov 12, 2002
52
GB
Hi everyone,
after tinkling with SBS Server, it's now been decided that the most secure configuration is to have a Hardware Firewall in front of ISA Server. Have any "Old Heads" done anything similar & can they pass on any advice. I take it our ADSL Modem will connect to the Firewall/Router's Internet Port then the Firewall will uplink to the second NIC on our Server - does anyone know of any issues that might occur or any "How To" tutorials?

Thanks & regards In Advance,

The Kilt
 
Sort by date Sort by votes
Kilt - I have a similar setup using a T1 line connected to a Cisco router and firwall. The router ethernet port is connected directly to the ISA server external nic, and the ISA server internal nic is connected to a bank of network switches. It works very well, and provides desirable multiple layers of protection. The Cisco firewall also allows me to block ip address ranges, which, to my knowledge, ISA does not do. It has been a while since I set it up, but I remember the first hurdle I had to overcome was solved by using a cross-cable between the router ethernet port and the ISA external nic. You continue to use the public IP address on the ISA external nic for the public DNS servers. I later subnetted our internal network to allow the use of a third nic on the ISA server as a DMZ, and this took additional configuration on the router. If you have problems in the set up, I can take a refresher look at our configuration to see how I set it up. Jim
 
Upvote 0 Downvote
Jim - cheers for getting back to me. I've tried your configuration with correct setup - SmallBiz Server with 2 NICs. Internal NIC set to the LAN Subnet via Switch & NIC 2 set to the Subnet of the Router's private IP address. The Router is connected via the Internet port to an ADSL modem. I've then tried using the ICW but it keeps cutting out at the same point & gives a log file (which I can't decipher) I think there's something wrong with the Firewall as I can't get into the configuration screen to turn the DHCP off. I called Microsoft & was told it would cost £180 - no 2 free calls with Server Software!! Say no more. I'm going to switch the Router tomorrow & will give it another go. I'll be back!!

Regards,

Kilt
 
Upvote 0 Downvote
Go to:


and on the top menu hover over Smallbusiness Server 2000 and then drop down to the "Network Configuration" option and from there select your option for static/dynamic IP and woth/without router (firewall).

It works for me.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

2
  • Locked
  • Question
Loss of my privacy
Replies
12
Views
2K
Rick998
Rick998
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
654
Johnkite
Johnkite
Shmid
  • Locked
  • Question
Hi We´re thinking of enabling Ac
Replies
0
Views
483
Shmid
Shmid
Tommy_T
  • Locked
  • Question
Sonic wall - Have an issue remotely connectioning VNC and SMB (and AFP) to one of the 2 ISP circuits
Replies
1
Views
583
nnaarrnn
nnaarrnn
AllenH12
  • Locked
  • Question
Bandwidth in Cisco ASA 5505
Replies
2
Views
342
AllenH12
AllenH12

Part and Inventory Search

Sponsor

Back
Top