Ask the Expert

Better security with ISA then with Proxy 2.0

Our Proxy server and e-mail server both have two network cards. One is on the local subnet and another has direct public IP address (MX record in ISP), because of this, lots of virus and Trojans come on the server and have the possibility of hacking too.

Please give us your best suggestion how to place this server. Or is there something you could recommend that I should do in current setup to prevent this security issue?

    Requires Free Membership to View

You have not mentioned any firewall, so I would guess your proxy server is the only security you have in place. The first thing I would like to suggest is switching to MS ISA as support for MS Proxy 2.0 has been discontinued. Moreover you will have better security with ISA then with Proxy 2.0.

You can make your e-mail server sit behind you proxy and make your e-mail server "server proxied" to the proxy server. Install a good enterprise version anti virus software and have it integrate with your mail server to scan all incoming and outgoing messages. Also, stop SMTP relay on your mail server. And if you decide to switch to MS ISA, you won't need separate Web Filtering software -- it comes built in.

This was first published in October 2003

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: