• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Win2k3 Ent & ISA Server Setup Recommendation

B

boggsie

Platinum Member
Hello there Anandtech! 😀

In the hopes of getting some experience, I am going to try to setup an extra PC as my router/firewall. I have the Action Pack which includes Windows 2003 Advanced Server as well as Microsoft ISA Server. I figured that this would be good experience to at least be able to say that I had done it.

If there is a guide that will walk me through this, that would be great, but ultimately what I am looking for is a recommendation on resources to use to get up to speed on this project.

Thanks for your time and recommendations.
-boggsie
 
when you install isa
, you can also install it as a web caching server. Install it only has a firewall (if you're using this for home or personal use).

Make sure you enable packet filtering, intrusion detection, ip routing, filtering of ip fragments

The firewall client can be your best friend.

If you're going to be using it as a router, I think you need to set the computer as a software router using the Routing and Remote Access service (use NAT) and then install ISA.

Make sure the NICs that have access to the internet is setup as a IGMP proxy, and the NICs that will be sharing the internet are setup as IGMP proxies. Make sure all your NICs show up under NAT, if not, add them.

You will need to make a firewall rule to allow the machine to keep it's IP active/alive, because by default, everything is blocked.

also check out www.isaserver.org

Here are some of my firewall client settings

[icq]
RemoteBindUdpPorts=0
ServerBindTcpPorts=0,1025-5000
NameResolutionForLocalHost=P
[mirc32]
ServerBindTcpPorts=113,1025-5000
NameResolutionForLocalHost=P
[game] (Diablo 2)
ServerBindTcpPorts=4000,6112
RemoteBindUdpPorts=4000,6112
KillOldSession=1
LocalBindUdpPorts=4000,6112
[msmsgs] (MSN Messenger)
ServerBindTcpPorts=6891-6900
NameResolutionForLocalHost=P
[msnmsgr] (MSN Messenger)
ServerBindTcpPorts=6891-6900
NameResolutionForLocalHost=P
[war3] (Warcraft 3)
KillOldSession=1
NameResolutionForLocalHost=P
ServerBindTcpPorts=6112
RemoteBindTcpPorts=6112
RemoteBindUdpPorts=6112
[mirc] (MIRC, makes DCC and IDENT work)
ServerBindTcpPorts=113,1025-5000
NameResolutionForLocalHost=P
 
also check out www.isaserver.org
Click to expand...

NICE ...

Thank you so much!

I recently received an update to my Action Pack subscription and inside it was "Microsoft Windows 2003 Server for Small Business" which appeared to describe exactly what I wanted to do. I installed this and the setup was fairly painless. I went to GRC.com and all my ports but 443 (SSL) are stealthed, so at first glance, it appears to do great as an out of the wall firewall.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top