Without
system policies in place, ISA would be unable to perform any network functions at all,
such as Windows Update, without them being specifically designated in manually created
firewall policies.
Basically speaking, system policies are really just firewall policies that have been preconfigured,
but are hidden from view. Because the task of configuring an ISA server would be
time-consuming and ominous, these policies were configured as part of the firewall installation.
It is wise, however, to examine each of these policies to ensure that they are truly
necessary for the role that the ISA server will play in the organization. To view the system
policies, click on the Show System Policy Rules link in the Tasks tab of the Firewall Policy
node. Some of the default system policies are illustrated in Figure 3.14.
To edit the system policy rules, right-click any one of the rules and click Edit System
Policy. This displays the System Policy Editor dialog box, as shown in Figure 3.15.
The System Policy Editor allows for advanced configuration of the system policy rules in
place on the server. It is in this location that particular types of system access can be
denied or enabled, based on the organization??™s particular security needs.
Pages:
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204