Problem solve Get help with specific problems with your technologies, process and projects.

Better security with ISA then with Proxy 2.0

Our Proxy server and e-mail server both have two network cards. One is on the local subnet and another has direct public IP address (MX record in ISP), because of this, lots of virus and Trojans come on the server and have the possibility of hacking too.

Please give us your best suggestion how to place this server. Or is there something you could recommend that I should do in current setup to prevent this security issue?
You have not mentioned any firewall, so I would guess your proxy server is the only security you have in place. The first thing I would like to suggest is switching to MS ISA as support for MS Proxy 2.0 has been discontinued. Moreover you will have better security with ISA then with Proxy 2.0.

You can make your e-mail server sit behind you proxy and make your e-mail server "server proxied" to the proxy server. Install a good enterprise version anti virus software and have it integrate with your mail server to scan all incoming and outgoing messages. Also, stop SMTP relay on your mail server. And if you decide to switch to MS ISA, you won't need separate Web Filtering software -- it comes built in.

This was last published in October 2003

Dig Deeper on Network Security Monitoring and Analysis

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.