Shijaz Abdulla’s ISA Firewall Misconfiguration Dirty Dozen

Shijaz Abdulla is an ISA firewall MVP and maintains a great site over at www.shijaz.com. I found an interesting article he did on the top 12 configuration or design errors people do with the ISA firewall. These errors include:

  1. Using a single NIC or “hork” mode ISA firewall
  2. Incorrect default gateways on published servers
  3. Contradictory firewall rules
  4. IP addressing errors on the firewall’s NICs
  5. Installing services on the firewall that create port contention
  6. SMTP Fix-Up on a front end PIX
  7. FTP clients are unable to upload
  8. Windows Server 2003 SP2 and the Scalable Networking Pack
  9. Scheduling limitations
  10. Multiple default gateways on the firewall
  11. Wrong common name on Web site certificates bound to Web Listeners
  12. DNS server configured on multiple NICs on the firewall

Check out Shijaz’s full article for the details over at:

http://www.shijaz.com/isaserver/top_10_isa_blunders.htm

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com

PROWESS CONSULTING documentation | integration | virtualization
Email: [email protected]
MVP — Forefront Edge Security (ISA/TMG/IAG)

Leave a Comment

Your email address will not be published.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top