John Howard - Senior Program Manager in the Hyper-V team at Microsoft

Senior Program Manager, Hyper-V team, Windows Core Operating System Division.

Blogs

Part 2: Infrastructure essentials Blogcast - ISA 2004 rules to allow web browsing

  • Comments 6
  • Likes

Continuing the blogcast series on infrastructure essentials.

Yesterday, we saw an overview of our network infrastructure and started diagnosing why Internet browsing from our corporate network was not working. In part 2 of this blogcast series on infrastructure essentials, we configure ISA 2004 to allow users to browse the Internet from work. We use ISA Servers built in monitoring capability to detect what is being blocked and to determine how to resolve it. However, we also notice on the ISA monitoring log that it is not picking up who is browsing - we want to have better control over this, so resolve that in the next part of this series....

Don't forget to have your say - drop me a comment if there's something specific you want to see. I'll try and fit it in....


Series Index:

0. Network configuration and series background.
1. Getting started        

 

Comments
  • Hi John, Great blog. It's fanatastic to see a genuine tech who plays with lots of different technology and makes loads of posts about it! I have a similiar network configuration at home, but I'm not as far along as you ... yet ;) You may have already scheduled this in and I just missed it *grin*. I'm having a few difficulties getting OWA over SSL to pass through my ISA server. I have a pretty standard setup, Cisco 2600 (utilising NAT) on the perimiter. A DMZ with a Linux box running my external DNS, with the ISA (two nic config) playing traffic cop between the DMZ and the Private network. The DMZ (not a true DMZ really - which is a shame) runs on the 192.168.xx Class C network, and the Private network on the inside of the ISA, runs 192.168.xx Class C network. Internal I have an Exchange/DC 2003 server, a File server running WSUS, and a couple of workstations and laptops. What I'd really like to do at some point is move the WAP into the DMZ and use VPN conectivity for the laptops to get to the domain/file server/mail. I want to be able to get to my mail from work first though :) Anyway, keep up the great work and I'm eagerly awaiting the next installments of your blogcasts :-) Cheers Adam

  • Continuing the blogcast series on infrastructure essentials.
    Part three of this blogcast series looks...

  • Continuing the blogcast series on infrastructure essentials.
    Where we left off, we were able to browse...

  • Continuing the blogcast series on infrastructure essentials.
    The next stage in our infrastructure is...

  • Continuing the blogcast series on infrastructure essentials.
    We're now moving towards making Outlook...

  • Continuing the blogcast series on infrastructure essentials.
    Unlucky 13 for some - it certainly was...

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment