[Bad boy Warrior]

Anyone know a good firewall for windows 2003 server as zone alarm isnt used for this server. No hardware types please

THX

[Marsden]

ISA 2004

Spend the money... you won't be disappointed.

[Bad boy Warrior]

what about isa 2000? is that ok or no good

[Bad boy Warrior]

and does isa allow me to configure outgoing traffic (aswell as incoming)?

[tguy]

ISA server 2004 is a better choice. While ISA 2000 and 2004 allow you to filter inbound and outbound traffic, 2004 has new features that are useful, and it performs better than ISA 2000.

[Br4tt3]

SP1 for Win2003 is around tha corner with the same FW as in WinXP SP2... Buy a new graphic card for ur gaming and wait for this update.

[Marsden]

ISA 2004 trusts ZERO networks. External or internal makes no difference.

ISA 2004 is completely different than what was available with ISA Server 2000. Most importantly, there is no longer a LAT. That’s right, there is no LAT.

The next major point regarding the ISA firewall’s Networking model is how it performs spoof detection. The ISA firewall uses its Network definitions to determine if a packet is spoofed. If a network interface defined as the root of an ISA firewall Network receives a packet that isn’t directly reachable from that interface, as defined by the Windows routing table, then the packet is considered spoofed.

The practical result of this spoof detection mechanism is that all IP addresses directly reachable from a NIC on the ISA firewall must be defined as part of the same ISA firewall Network.

Another side effect of this spoof detection mechanism is that you need to use Direct Access for host to host communications on the same ISA firewall Network. One way to think of an ISA firewall Network is that the ISA firewall doesn’t perform stateful packet and stateful application layer inspection on communications between hosts on the same ISA firewall Network.