Recent content by joeb1kenobe

Another thing to look at the the rules on the ISA server. By Default no traffic is allow through the server. You must content and protocol rules to allow traffic through the ISA server. Joe

If you upgrade to Windows 2003, you also have to upgrade all of your CAL's. The company I work for was looking to do Exchange 2003 on Windows 2003, unfortunatly, the cost for upgrading the CAL's for both Windows and Outlook (for OWA), was about $100,000. Way out of the range for our planned...

I have to agree with kHZ. Reformating is not enough. Even though you format the drive, the file still exist on the HD. I would invest in some type of disk scrubbing tool, or if you have accss to a linux live-cd using a command like: dd if=/dev/zero of=/dev/hda conv=noerror

I am not sure what that message means. But, I found this article on http://microsoft.com/technet. You might want to review this Q article. Q300211. Also, on http://www.isaserver.org They have a supurb step by step howto on setting up logging to SQL. Joe

Instead of using a domain account, try using a sql account. I used a sql security account, and the logging worked fine on my systems.

I have played around with SurfControl, but never implemented the software. One thing that I found you need to look out for is memory. Not sure what the memory requirements are, but SurfControl needs an additional 256 MB of memory. Joe

Both companies are ISPs. Level3 and GTE are providing ISP service through these IPs. The GTE 66.14.237.56 address is in their DSL DHCP pool. These people could be doing these scans wittingly or unwittingly. It maybe that these people have a trojan horse installed being controlled by a client...

When you say that Ping is the only thing that works, I am assuming that HTTP or FTP access does not work. If that is the case, it may be a problem with a protocol rule. You may want to check there. Joe

The first thing I suggest is to buy a book. Next, if all you are doing is monitoring, then a box with a single NIC will work fine. Install ISA server in caching mode only. Set up the content/protocol rules so that only users from a specified global group have access. If for example you want...

Because of the security build into ISA it really doesn't like have both NIC's on the same network. It uses LAT tables to decide what networks are trusted and what networks are not trusted. If both NICs are on the same netowrk, it will have problems decyphering what is trusted/untrusted. Try...

Did you check to see which port ISA is listening on. It might be setup to something like 8080 instead of 80. Joe

Using a DHCP scope like that is a pretty good idea. I will have to keep that in mind for later. But, to control access via users, you do not need to install the fw client. What you need to do is setup a global NT group, call it Internet or something of the like. Setup a content...

The problem with win/linux communication is Windows wants and NTLM security token to allow access through the ISA server, that is if it is setup that way. From the message that you describe, the ISA server requires authentication. The only way I know of to try to fix this is to allow all...

Go to http://www.psacake.com/web/eg.asp and type in the IP address. This will give you the necessary information to find the ISP responsible. Joe

ISA is not an application layer firewall. It is a nice stateful firewall but does not have any IDS capibilities. When you publish a website, It is the same as having that server on the internet. The ISA server uses NAT to hide the internal address, but allows all data to come in the to open...