Installing ISA Server 2004 Standard Edition with a Single Network Adapter


The installation procedures for installing ISA Server 2004 with a single network adapter are identical to the steps outlined for installing ISA Server 2004 Standard Edition, except for the following steps:

  • On the Custom Setup page, choose not to install the Firewall Client Share, because a single NIC configuration does not support firewall or SecureNAT clients.

  • When specifying the internal network addresses during the setup, include all of your address ranges except for 0.0.0.0, 255.255.255.255, and the address range from 127.0.0.0 to 127.255.255.255.

    Note 

    With only a single network adapter, all your address ranges constitute the internal network.

  • After the installation has completed, open the ISA Management console and apply the Single Network Adapter network template.

    For more information about network templates, see Chapter 9, "Configuring Multinetworking."

  • On the Internal Network page, choose to add only those network addresses that are defined by the Windows Routing Table by selecting the single network adapter. To keep the attack surface smaller, clear the Add The Following Private Ranges check box.

Functionality Available with ISA Server Configured with a Single Network Adapter

ISA Server 2000 had an installation mode known as Caching-Only Mode, which hearkens back to ISA Server's genesis as a pure proxy server in the Proxy 2.0 product. ISA Server 2004 doesn't have a built-in caching-only mode, but does support a single network adapter configuration. The scenario of a single network adapter is useful when you want to provide only Web caching services, but not if you want to use the firewall and VPN functionality. Although ISA Server 2004 supports this configuration, you should be aware that it limits the product's functionality; the following components are not available when ISA Server is installed with a single network adapter:

  • All forms of virtual private networking (VPNs)

  • Firewall or SecureNAT clients

  • Multinetwork firewall policy

  • IP packet filtering (it is available only for the ISA Server's Local Host network)

  • Server publishing (Web publishing is available)

  • Application-level filtering (excluding application-level filtering for HTTP)

  • Any protocol except for FTP, HTTP, and HTTPS




Microsoft Internet Security and Acceleration ISA Server 2004 Administrator's Pocket Consultant
Microsoft Internet Security and Acceleration (ISA) Server 2004 Administrators Pocket Consultant (Pro-Administrators Pocket Consultant)
ISBN: 0735621888
EAN: 2147483647
Year: 2006
Pages: 173

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net