It also creates rules that grant VPN clients full access to the
internal network.
. Allow Limited Web Access, Allow Access to Network Services on Perimeter
Network??”This option configures the same rules as the preceding option, but with
the addition of DNS access to the DMZ network as well.
. Allow Limited Web Access and Access to ISP Network Services??”This option
configures the same rules as the Allow Limited Web Access option, with an additional
rule to allow DNS to the external network (for ISP services).
. Allow Unrestricted Access??”This option, while definitely not the most secure,
opens all ports from the internal protected networks to the Internet and to the DMZ
network. It does not, however, allow the external network to have any type of access
to internal networks.
TIP
After the wizard has configured these auto-generated rules, it is highly recommended to
audit and customize them to match the role that the ISA server will play in the organization.
Although the wizard creates rules based on common scenarios, in many cases
they will require additional customization to comply with the organization??™s security policies.
Pages:
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197