ISA in SBS - yes, it's secure

A central location for SBS ISA specific configuration information relevant to small consulting practices and others smart enough to use the best technology in the world.

Lingo - The Talk of Broadband

Sunday, January 29, 2006

What we do after installing ISA 2004

Configuring ISA 2004 To Do List

1. Increase Client Connection Limits to 160 for everyone. Adjust for individual workstations upward if necessary.

2. Enable Intrusion Detection and DNS Attack Detection, except DNS Zone Transfer.

3. Change Web Proxy and Firewall Logging limits to 4 GB, retain for 30 days, minimum disk space 512MB, maximum log size 4GB and convert to MSDE. Double check that the log files are stored on the data drive.

4. Configure Report, publish report to folder

5. Adjust Cache Size. Add 1MB per user and round up.

6. Turn off Logging on System Policy #19, Allow Access from Trusted Computer to the Firewall Client Installation share on the ISA Server.

7. Change Alert for Log Failure to stop Firewall Service

8. Change Alert for Connection Limit Exceeded to Immediately.


At 10:50 AM, Anonymous Anonymous said...

It would be nice Amy if you could at least describe where do make this changes, as anyone that needs to know what to do probably isn't familiar with ISA 2004 yet.

At 9:36 AM, Blogger Amy - Harbor Computer Services said...

That kind of thing doesn't fit well into the blog format so I wrote a paper on this with step-by-step instructions. It doesn't seem to have been published yet. I'm not planning to add a new section to the column on the right for papers. You'll be able to download step-by-step's there soon.

At 9:37 AM, Blogger Amy - Harbor Computer Services said...

Argh...that was supposed to read I'm NOW planning to add a new section to the column on the right for papers.

At 6:59 PM, Blogger Mordecai said...

Have you posted that document somewhere? I think it would be very helpful still!

At 6:16 PM, Blogger Jack Dorsey said...

Any chance of a Hot-To on these steps? It would be extremely helpful if you have the time! Thanks!


Post a Comment

<< Home