OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Christian Hampson (champsonhampsonservices.com)
Date: Mon Jun 10 2002 - 12:19:29 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Milos:

    It would appear that you have an ISA server that is (practically) set up
    only as a proxy server. From what you have described, your external
    router is translating addresses and proiding any security you may have.
    On the plus side, however, anyone who manages to gain control of your
    ISA server will have no more power than they did before.

    I personally would find it necessary to add a NIC, move translation to
    the ISA server and place the ISA server between the router and your
    internal network. Otherwise your company has wasted whatever money they
    spent on ISA.

    Christian Hampson, MCSE, CISSP

    -----Original Message-----
    From: miloskv1netscape.net [mailto:miloskv1netscape.net]
    Sent: Monday, June 10, 2002 05:03
    To: focus-mssecurityfocus.com
    Subject: Help me and my ISA server

    I've just got a job as a system administrator in one company which have
    ISA 2000 server in it. When I look at the configuration of my isa server
    I saw that it has only one network adapter connected to the public range
    of IP adressess on my network. Internal client are comming from my
    private range (192.168.x.x) through win2000 router 192.168.x.x /
    194.x.x.x and comming to my ISA server one and only NIC 194.x.x.140.
    Something like this

    192.168.0.0-192.168.0.254--------router(192.168.0.5 /
    194.X.X.139)------ISA(194.X.X.140)---------Zyxell (194.X.X.141)

    I saw that lot of people use my ISA server as their proxy (people from
    internet). I went to microsoft web site and saw that minimal
    requirements for ISA 2000 (In integrated mode) are two network adapters
    (one for private one for public). So I think LAT table in my case is
    useless... Am I Right???? I want to know if this is real problem (My ISA
    is exploited becouse of stupidity of an ex-administrator (guy before me
    who installed ISA2000) Any help will be great and any questions or
    suggestions will help me a lot. Thanks for your time and everything you
    have allready done for me and my knowledge.

    Milos K. V. , System Administrator
    Belgrade, Yugoslavia

    __________________________________________________________________
    Your favorite stores, helpful shopping tools and great gift ideas.
    Experience the convenience of buying online with ShopNetscape!
    http://shopnow.netscape.com/

    Get your own FREE, personal Netscape Mail account today at
    http://webmail.netscape.com/