29.
When configuring a site-to-site VPN between two ISA Server 2006 systems, the option
exists to secure the traffic by using the IP Security Protocol (IPSec), the Layer 2 Tunneling
Protocol (L2TP) over IPSec, or the Point-to-Point Tunneling Protocol (PPTP), depending on
the individual organizational security needs. These options are available when running
the Create Site-to-Site Connection Wizard that is launched from the Create VPN Site-to-
Site Connection link in the Task Pane.
In addition to supporting a destination ISA Server 2006 system for site-to-site VPN, ISA
Server also supports connecting to a third-party VPN gateway that supports the IPSec
protocol. This greatly extends ISA??™s reach because third-party firewall solutions that may
already be in place are potential candidates for ISA site-to-site VPNs.
Specific configuration information for site-to-site VPNs can be found in Chapter 10.
Understanding VPN Quarantine
The concept of the VPN quarantine network is fairly straightforward, although its implementation
is not necessarily so. Essentially, VPN quarantine refers to the capability to
have ISA place a client that does not conform to specific criteria into a special quarantined
VPN clients network.
Pages:
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220