ISA in SBS - yes, it's secure
MetaGraph is a client server medical billing application. It FTP's files out of your server AND client workstations as part of it's licensing verification. By default this behavior is not allowed in ISA 2004. Here's how to configure ISA to allow this application through your ISA server.
1. Open ISA Management and click on Firewall Policy.
2. Right click on the SBS Internet Access rule and select Configure FTP.
3. Uncheck the Read Only box. Click OK.
Follow the same procedure for the SBS FTP Outbound Access Rule. This rule change is needed for the client setup portion.
The server and workstation appear to always be connecting to the same destination server (22.214.171.124). You may wish to undo these rule changes after initial setup of the application is complete or create a new FTP rule only allowing FTP out to the above IP address.
Commentary: With all of the new HIPPA regulations that medical institutions must comply with a software package that is FTPing anything out of the server and workstations is just asking for trouble.