On what do you base this opinion? As a firewall, ISA 2004 is exceptional. It
is a true application layer firewall, especially effective at protecting
Microsoft applications. The product offers:
* Multi-layer firewall protection with packet, circuit and application level
filtering with deep content inspection.
* High performance Web proxy and caching for fast, secure Internet access
* Integrated firewall/VPN that offers a higher level of security than a
standalone RAS VPN, including built-in IPSec tunnel mode and support for
Windows quarantine.
* SSL termination to publish secured sites, otherwise known as SSL VPN
* Firewall-level spam control with deep content inspection, along with IP,
domain, and keyword filtering and attachment blocking
* Integration with Windows® Active Directory® services also enables
administrators to apply user-level policy and authentication across a broad
range of scenarios, including firewall policy, VPN authentication, and outbound
Web proxy and access control. This ease of use makes ISA 2004 an ideal
solution for helping to secure Windows Server(tm) 2003 networks.
* Advanced inspection at the application protocol layer allows ISA to inspect
and validate SMTP and HTTP request syntax for compliance with the application's
security declarations.
* Advanced inspection at the application protocol layer allows ISA to inspect
the proprietary RPC interfaces used by Microsoft applications. To illustrate
the value of this unique capability, ISA 2004's ability to enforce RPC security
policy empowers an organization to take full advantage of Exchange productivity
features without fear of a rogue RPC exploit compromising the messaging
infrastructure.
* Web Publishing Rules are used to publish OWA sites and services. When an OWA
site is published, ISA's proxy filter always intercepts the request and then
proxies the request to the OWA site published by the Web Publishing Rule.
ISA 2004 is a much better product than was ISA 2000. It is not just for
proxy-server any longer.
-----Original Message-----
From: Paul M. [mailto:gpmidi@gmail.com]
Sent: Thursday, May 26, 2005 9:27 AM
To: secdata
Cc: firewalls@securityfocus.com
Subject: Re: ISA 2004 - professional opinion
There are much better firewalls available. Checkpoint is definitely
one of the best. If you need an http proxy I would go with Squid.
~Paul
http://www.checkpoint.com/
http://www.squid-cache.org/
On 5/25/05, Hesperia DOS-IT Security <itsecurity@hoteles-hesperia.es> wrote:
I would recommend ISA as a proxy-server rather than a complete firewall
solution.
-----Mensaje original-----
De: secdata [mailto:secdata@gmail.com]
Enviado el: sabado, 21 de mayo de 2005 3:38
Para: firewalls@securityfocus.com
Asunto: ISA 2004 - professional opinion
Hi Guys,
I was wondering if someone had an experience with ISA 2004 Firewall? If so .
what is your professional opinion about this product as a read /
professional / secured / useable firewall ?
Thank
