. Allow Limited Web Access??”This option, more common in many organizations,
creates firewall rules that allow web browsing via the HTTP, HTTPS, and
FTP ports to the external network. It also creates rules that grant VPN clients
full access to the internal network.
146 CHAPTER 5 Deploying ISA Server 2006 as a Firewall
FIGURE 5.6 Creating a default policy for the ISA network template.
. Allow Limited Web Access and Access to ISP Network Services??”This option
configures the same rules as the Allow Limited Web Access option, with an
additional rule to allow DNS to the external network (for ISP services).
. Allow Unrestricted Access??”This option, although definitely not the most
secure, opens all ports from the internal protected networks to the Internet
and to the DMZ network. It does not, however, allow the external network to
have any type of access to internal networks.
9. Select the firewall policy from the options, using the preceding criteria as a guideline.
In this example, the Allow Limited Web Access and Access to ISP Network
Services policy is chosen. Click Next to continue.
10. Review the options on the completion dialog box and click Finish to create the
template, network rules, and firewall rules.
Pages:
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296