ISA is a nice and SECURE tool, if it is used correctly. It is very good for publishing services (HTTP, Exchange-RPC).
You should do a back-to-back two-layer firewall setup, with the outer ISA not being member of your inner domain. The publishable services should be in the DMZ between the two firewalls - webserver, Exchange FRONTEND. You can use the URLScan plugin for ISA FP1 to make sure no illegal HTTP options get through to the webserver.
The internal firewall could also be a non-ISA, preferably HW firewall, but then you loose some strong outgouing proxy authentication integration with AD.
Do not use ISA as a three-homed firewall, you loose all secure application and stateful packet inspection to that kind of DMZ.
Hi folks, I am a Hungarian living in Hungary. I buy on the web, from Australian DVDs to American books. All with a Hungarian Bank issued web-based virtual card.
Of course, you have to understand, that vendors are not selling out of US, because of CHANNEL POLICIES. I am working in the IT industry, and I learn this on my own skin. Is this acceptable? Well, I could always find a solution to get something If I really wanted. And I am not even an American, who has relatives all over that continent, and can buy through them.
Soon, we will be in the EU. This will change some things - like shopping from other EU countries (eg. amazon.co.uk) will be easier.
they made a very reliable SMp capable chipset, used by some big brands and now some taiwanese like ASUS.
cheap also, while ignoring the troubles and low capabilities of those "original" Intel chipshits.
Yes, i think this one could be an answer! I faced several times the request from Media Player to download a codec. And naturally I blindclicked on the "yes" button...
Slashdot Mirror
ISA is a nice and SECURE tool, if it is used correctly. It is very good for publishing services (HTTP, Exchange-RPC).
You should do a back-to-back two-layer firewall setup, with the outer ISA not being member of your inner domain. The publishable services should be in the DMZ between the two firewalls - webserver, Exchange FRONTEND. You can use the URLScan plugin for ISA FP1 to make sure no illegal HTTP options get through to the webserver.
The internal firewall could also be a non-ISA, preferably HW firewall, but then you loose some strong outgouing proxy authentication integration with AD.
Do not use ISA as a three-homed firewall, you loose all secure application and stateful packet inspection to that kind of DMZ.
Hi folks,
I am a Hungarian living in Hungary.
I buy on the web, from Australian DVDs to American books. All with a Hungarian Bank issued web-based virtual card.
Of course, you have to understand, that vendors are not selling out of US, because of CHANNEL POLICIES. I am working in the IT industry, and I learn this on my own skin.
Is this acceptable? Well, I could always find a solution to get something If I really wanted. And I am not even an American, who has relatives all over that continent, and can buy through them.
Soon, we will be in the EU. This will change some things - like shopping from other EU countries (eg. amazon.co.uk) will be easier.
Oh My GOD! Finally someone wrote that name down!
Yeah, he is universal, time and space does not distort his works.
http://www.microsoft.com/WINDOWS2000/library/plann ing/security/efssteps.asp
Check out this link:
http://www.serverworks.com
they made a very reliable SMp capable chipset, used by some big brands and now some taiwanese like ASUS.
cheap also, while ignoring the troubles and low capabilities of those "original" Intel chipshits.
khm. the problematic feature is SELLING, not publishing. They receive money for it, while Napster does NOT include payment.
Yes, i think this one could be an answer! I faced several times the request from Media Player to download a codec. And naturally I blindclicked on the "yes" button...