Internet security acceleration 2006

ISA Server extends the firewall and security features to apply to traffic between any networks or network objects. Unique per-network policies The new multi-networking features of ISA Server enable you to better protect your network against internal and external security threats by limiting communication between clients even within your own organization.

Multi-networking functionality supports sophisticated perimeter networks, also known as demilitarized zone DMZ or screened subnet scenarios, helping you to configure how clients in different networks access the perimeter network. Access policies between networks can then be based on the unique security zone represented by each network. Route and NAT network relationships You can use ISA Server to define routing relationships between networks, depending on the type of access and communication required between the networks.

In some cases, you may want more secure, less transparent communication between the networks. For these scenarios, you can define a NAT relationship. In other situations, you want to simply route traffic through ISA Server. In these cases, you can define a route relationship. Packets moving between routed networks are fully exposed to ISA Server stateful filtering and inspection mechanisms.

Real-time failover enables high availability for enterprise arrays, while load balancing evenly distributes connections across firewall array servers to prevent network slow downs related to impacted firewalls. Top Advanced Firewall Protection Feature Description Multi-layer firewall ISA Server provides three types of firewall functionality: packet filtering also called circuit-layer , stateful filtering, and application layer filtering.

Application layer filtering ISA Server provides deep content filtering through built-in application filters. The extent of the inspection is configured on a per-rule basis. With this capability, you can configure custom constraints for HTTP inbound and outbound access. Block access to all executable content You can configure ISA Server HTTP policy to block all connection attempts to the Microsoft Windows operating system executable content, regardless of the file extension used on the resource.

Control HTTP file downloads through file extension The ISA Server HTTP policy enables you to define policy based on file extension, including "allow all except a specified group of extensions" or "block all extensions except for a specified group.

This gives you precise control over what content internal and external users can access through the ISA Server firewall. Extensive protocol support ISA Server gives you control over accessing and using any protocol, including IP-level protocols. Support for complex protocols requiring multiple primary connections Many streaming media and voice or video applications require that the firewall manage complex protocols.

ISA Server can manage these protocols and has an easy-to-use New Protocol Wizard you can use to create protocol definitions. Customizable protocol definitions With ISA Server , you can control the source and destination port number for any protocol for which you create a firewall rule.

This gives the ISA Server firewall administrator a high level of control over what packets are allowed inbound and outbound through the firewall. Firewall user groups You can use ISA Server to create custom firewall groups that are comprised of pre-existing groups in the local accounts database or the Active Directory directory service domain.

This increases your flexibility to control access based on user or group membership, because the firewall administrator can create custom security groups from these existing groups. This removes the requirement that the firewall administrator be a domain administrator to create custom security groups for inbound and outbound access control. Network objects With ISA Server , you can greatly expand your ability to define network objects by creating computers, networks, network sets, address ranges, subnets, computer sets, and domain name sets.

These network objects are used to define source and destination settings for firewall rules. Firewall Rule wizards ISA Server includes a new set of rule wizards that make it easier to create access policy. ISA Server access policy can be created by a sophisticated firewall rule that you can use to configure any required policy element.

You do not need to leave the rule wizard to create a network object. Any network object or relationship can be created within the new wizard. Firewall rules represent an ordered list ISA Server firewall rules are represented in an ordered list in which connection parameters are first compared to the top listed rule.

ISA Server moves down the list of rules until it finds a rule matching the connection parameters and enforces the matching rule's policy. This approach to firewall policy makes it easier to determine why a specific connection is allowed or denied. User-based or group-based access policy With the ISA Server enhanced firewall rules, you can define the source and destination for each protocol a user or group is able to access. This greatly increases flexibility for inbound and outbound access control.

Port redirection for FTP server publishing rules Using ISA Server , you can receive a connection on one port number and redirect the request to a different port number on the published server. Flood Resiliency A new Flood Resiliency feature protects ISA Server from being permanently unavailable, compromised, or unmanageable during a flooding attack. Enhanced remediation during attack Flood Resiliency provides enhanced remediation during attacks through log throttling, control of memory consumption, and control of pending DNS queries.

Loading your results, please wait Warning: This site requires the use of scripts, which your browser does not currently allow. See how to enable scripts. Select Language:. Download Download. Choose the download you want. File Name. Download Summary:. Total Size: 0. Back Next. Microsoft recommends you install a download manager. Microsoft Download Manager. Many web browsers, such as Internet Explorer 9, include a download manager.

Stand-alone download managers also are available, including the Microsoft Download Manager. The Microsoft Download Manager solves these potential problems. It gives you the ability to download multiple files at one time and download large files quickly and reliably. It also allows you to suspend active downloads and resume downloads that have failed. Microsoft Download Manager is free and available for download now.

Warning: This site requires the use of scripts, which your browser does not currently allow. See how to enable scripts. Select Language:. Clear in his explanations and assisting the attendees where needed. Big thumbs up!

Many thanks! Finished - Leave feedback. Duration: Only 3 Days. Dates See prices. Overview This three-day instructor-led course provides students with the knowledge and skills to deploy and manage Microsoft Internet Security and Acceleration ISA Server as part of a larger security infrastructure.