Publishing scenarios, including step-by-step guides, are
listed in Part III of this book, ???Securing Servers and Services with ISA Server 2006.???
Reviewing and Modifying the ISA System Policy
By default, ISA Server 2006 uses a set of firewall policy rules that grant the Localhost
network specific types of functionality and access. Without system policies, for example,
an ISA server itself would not be able to perform tasks such as pinging internal servers or
updating software on the Windows Update website. Because the default rule is to deny all
traffic unless otherwise specified, it is necessary to set up system policy rules to support
specific types of access from the local ISA server.
System policy rules are enabled, but are not shown by default in ISA Server 2006. To view
the system policy rules, click on the Show System Policy Rules link in the Tasks tab of the
Firewall Policy node. The system policy rules, partially shown in Figure 5.12, are extensive,
and it is important to understand what types of functionality are provided by each individual
policy rule.
FIGURE 5.12 Viewing default system policy rules.
154 CHAPTER 5 Deploying ISA Server 2006 as a Firewall
All the system policy rules are configurable through the System Policy Editor, shown in
Figure 5.
Pages:
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306