O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Dr. Tom Shinder's Configuring ISA Server 2004

Book Description

Dr. Tom and Debra Shinder have become synonymous with Microsoft's flagship firewall product ISA Server, as a result of Tom's prominent role as a member of the beta development team, and Tom and Deb's featured placement on both Microsoft's ISA Server Web site and ISAserver.org. Tom and Deb's book on the first release of the product "Configuring ISA Server 2000" dominated the ISA Server 2000 book market having sold over 40,000 copies worldwide, and the ISA Server community is eagerly awaiting Tom and Deb's book on ISA Server 2004, which is the dramatically upgraded new release from Microsoft.

Dr. Tom and Debra Shinder have become synonymous with Microsoft's flagship firewall product ISA Server, as a result of Tom's prominent role as a member of the beta development team, and Tom and Deb's featured placement on both Microsoft's ISA Server Web site and ISAserver.org. Tom and Deb's book on the first release of the product "Configuring ISA Server 2000" dominated the ISA Server 2000 book market having sold over 40,000 copies worldwide, and the ISA Server community is eagerly awaiting Tom and Deb's book on ISA Server 2004, which is the dramatically upgraded new release from Microsoft. This book will be featured prominently on the ISAserver.org home page as well as referenced on Microsoft TechNet and ISA Server Web pages. Tom and Deb's unparalleled technical expertise combined with prime on-line marketing opportunities will make this the #1 book again in the ISA Server market.

* This book will provide readers with unparalleled information on installing, confiuguring, and troubleshooting ISA Server 2004 by teaching readers to: * Deploy ISA Server 2004 in small businesses and large organizations.

* Learn how to configure complex DMZ configurations using ISA Server 2004's new network awareness features and built-in multinetworking capabilities.

* Learn how to take advantage of ISA Server 2004's new VPN capabilities!

Table of Contents

  1. Cover image
  2. Title page
  3. Table of Contents
  4. Register for Free Membership to solutions@syngress.com
  5. Dedications
  6. Copyright
  7. Acknowledgments
  8. About the Authors
  9. Technical Editor
  10. A Note From the Publisher
  11. From Deb and Tom Shinder, Authors
  12. Chapter 1: Evolution of a Firewall: From Proxy 1.0 to ISA 2004
    1. The Book: What it Covers and Who It’s For
    2. Security: The New Star of the Show
    3. Firewalls: The Guardians at the Gateway
    4. ISA: From Proxy Server to Full-Featured Firewall
    5. Summary
  13. Chapter 2: Examining the ISA Server 2004 Feature Set
    1. The New GUI: More Than Just a Pretty Interface
    2. Teaching Old Features New Tricks
    3. New Features on the Block
    4. Missing in Action: Gone but Not Forgotten
    5. Summary
    6. Solutions Fast Track
  14. Chapter 3: Stalking the Competition: How ISA 2004 Stacks Up
    1. Firewall Comparative Issues
    2. Comparing ISA 2004 to Other Firewall Products
    3. Summary
    4. Solutions Fast Track
  15. Chapter 4: ISA 2004 Network Concepts and Preparing the Network Infrastructure
    1. Our Approach to ISA Firewall Network Design and Defense Tactics
    2. Tom and Deb Shinder’s Configuring ISA 2004 Network Layout
    3. How ISA Firewall’s Define Networks and Network Relationships
    4. Web Proxy Chaining as a Form of Network Routing
    5. Firewall Chaining as a Form of Network Routing
    6. Configuring the ISA Firewall as a DHCP Server
    7. Summary
    8. Solutions Fast Track
  16. Chapter 5: ISA 2004 Client Types and Automating Client Provisioning
    1. Understanding ISA 2004 Client Types
    2. Automating ISA 2004 Client Provisioning
    3. Automating Installation of the Firewall Client
    4. Summary
  17. Chapter 6: Installing and Configuring the ISA Firewall Software
    1. Pre-installation Tasks and Considerations
    2. Performing a Clean Installation on a Multihomed Machine
    3. Default Post-installation ISA Firewall Configuration
    4. The Post-installation System Policy
    5. Performing an Upgrade Installation
    6. Performing a Single NIC Installation (Unihomed ISA Firewall)
    7. Quick Start Configuration for ISA Firewalls
    8. Hardening the Base ISA Firewall Configuration and Operating System
    9. Summary
    10. Solutions Fast Track
  18. Chapter 7: Creating and Using ISA 2004 Firewall Access Policy
    1. Introduction
    2. ISA Firewall Access Rule Elements
    3. Configuring Access Rules for Outbound Access through the ISA Firewall
    4. Using Scripts to Populate Domain Name Sets
    5. Creating and Configuring a Public Address Trihomed DMZ Network
    6. Allowing Intradomain Communications through the ISA Firewall
    7. Summary
    8. Solutions Fast Track
  19. Chapter 8: Publishing Network Services with ISA 2004 Firewalls
    1. Overview of Web Publishing and Server Publishing
    2. Creating and Configuring Non-SSL Web Publishing Rules
    3. Creating and Configuring SSL Web Publishing Rules
    4. SSL Bridging
    5. SSL “Tunneling” versus SSL “Bridging”
    6. What About SSL-to-HTTP Bridging?
    7. Enterprise and Standalone Certificate Authorities
    8. SSL-to-SSL Bridging and Web Site Certificate Configuration
    9. Importing Web Site Certificates into The ISA Firewall’s Machine Certificate Store
    10. Requesting a User Certificate for the ISA Firewall to Present to SSL Web Sites
    11. Creating an SSL Web Publishing Rule
    12. The Publishing Mode Page
    13. The Select Rule Action page
    14. The Bridging Mode Page
    15. The Define Website to Publish Page
    16. The Public Name Details Page
    17. The Select Web Listener Page
    18. The User Sets Page
    19. The SSL Web Publishing Rule Properties Dialog Box
    20. Creating Server Publishing Rules
    21. Creating Mail Server Publishing Rules
    22. Summary
    23. Solutions Fast Track
  20. Chapter 9: Creating Remote Access and Site-to-Site VPNs with ISA Firewalls
    1. Overview of ISA Firewall VPN Networking
    2. Creating a Remote Access PPTP VPN Server
    3. Creating a Remote Access L2TP/IPSec Server
    4. Creating a PPTP Site-to-Site VPN
    5. Creating an L2TP/IPSec Site-to-Site VPN
    6. IPSec Tunnel Mode Site-to-Site VPNs with Downlevel VPN Gateways
    7. Using RADIUS for VPN Authentication and Remote Access Policy
    8. Using EAP User Certificate Authentication for Remote Access VPNs
    9. Supporting Outbound VPN Connections through the ISA Firewall
    10. Installing and Configuring the DHCP Server and DHCP Relay Agent on the ISA Firewall
    11. Creating a Site-to-Site VPN Between an ISA Server 2000 and ISA Firewall
    12. A Note on VPN Quarantine
    13. Summary
    14. Solutions Fast Track
  21. Chapter 10: ISA 2004 Stateful Inspection and Application Layer Filtering
    1. Introduction
    2. Application Filters
    3. Web Filters
    4. IP Filtering and Intrusion Detection/Intrusion Prevention
    5. Summary
    6. Solutions Fast Track
  22. Chapter 11: Accelerating Web Performance with ISA 2004 Caching Capabilities
    1. Understanding Caching Concepts
    2. Understanding ISA Server 2004’s Web Caching Capabilities
    3. Configuring ISA Server 2004 as a Caching Server
    4. Summary
    5. Fast Track
  23. Chapter 12: Using ISA Server 2004’s Monitoring, Logging, and Reporting Tools
    1. Introduction
    2. Exploring the ISA Server 2004 Dashboard
    3. Creating and Configuring ISA Server 2004 Alerts
    4. Monitoring ISA Server 2004 Connectivity, Sessions, and Services
    5. Working with ISA Server 2004 Logs and Reports
    6. Using ISA Server 2004’s Performance Monitor
    7. Solutions Fast Track
  24. Index