43, allow for the customization of what types of attacks will be
reported as alerts in the ISA Console.
It is recommended to enable all the intrusion detection filters and to closely watch for
these type of attacks. An increase in intrusion detection attempts can signal a full-blown
attack against the ISA server.
Defining RADIUS and LDAP Servers
Remote Dial-In User Service (RADIUS) and Light Directory Access Protocol (LDAP) Servers
can be configured by clicking the Specify RADIUS and LDAP Servers link in the General
node of the Console. These types of servers are typically utilized for authentication when
the ISA server is not a member of an Active Directory domain and/or when the server
is configured as an appliance reverse proxy server in the DMZ of an existing firewall.
FIGURE 3.43 Enabling intrusion detection filters.
110 CHAPTER 3 Exploring ISA Server 2006 Tools and Concepts
FIGURE 3.44 Setting IP preferences.
For more information on this concept, reference Chapter 7, ???Deploying ISA Server as a
Reverse Proxy in an Existing Firewall DMZ.???
Configuring IP Protection
The IP Preference settings, invoked via the Configure IP Protection link, allow for
advanced IP options filtering to be configured, as shown in Figure 3.
Pages:
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235