NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > FOCUS-MS> 2003-q2

RE: VPN and ISA server

From: Benjamin D. Goldman (bgoldmankipany.com)
Date: Wed Apr 09 2003 - 10:22:19 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

put a second machine on the network border - with 2 Network cards in it.

1 internal
1 external

build your tunnels to that machine.

turn off all other services, and put up strict TCPIP filter policies on
that machine on both interfaces.

your best practice would be to put this at your external perimiter, and
have a second perimiter behind it as well.

Im sure someone else will contribute more detail.

-----Original Message-----
From: Joseph Burton [mailto:joseph_burton1970hotmail.com]
Sent: Wednesday, April 09, 2003 10:33 AM
To: focus-mssecurityfocus.com
Subject: VPN and ISA server

Hello all,

Does anyone know if Microsoft ISA server can handle IPSec in
"tunnel-mode"?
I've heard that only "transport-mode" works so that you may only
establish a
secure communication between two nodes, but not access the network
behind
the nodes.

To put it a different way, I want to use ISA server for roaming users to

access the office LAN. Is this possible (I know I could use PPTP but
that is
not an option in this case)? And if this works, do I need a VPN client
or
can I use the native Win 2000/XP IPSec support?

Thanks in advance,

//Joe

_________________________________________________________________
Hitta rätt på nätet med MSN Sök http://search.msn.se/

----------------------------------------------------------------------
Block Spam, Smut & Viruses
SurfControl E-mail Filter for SMTP & Exchange leverages multiple layers
of
technology including filtering embedded and attached file content. Rid
your
enterprise of unwanted content.
http://www.securityfocus.com/SurfControl-focus-ms2
Download your free fully functional trial, complete with 30-days of free
technical support.
----------------------------------------------------------------------

----------------------------------------------------------------------
Block Spam, Smut & Viruses
SurfControl E-mail Filter for SMTP & Exchange leverages multiple layers of
technology including filtering embedded and attached file content. Rid your
enterprise of unwanted content.
http://www.securityfocus.com/SurfControl-focus-ms2
Download your free fully functional trial, complete with 30-days of free
technical support.
----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]