. Application Settings tab??”Use customized HTML forms instead of the
default=unchecked.
. Bridging tab??”Redirect requests to SSL port=443.
. Users tab??”This rule applies to requests from the following user sets=All
Authenticated Users.
. Schedule tab??”Schedule=Always.
. Link Translation tab??”Apply link translation to this rule=checked.
Different rules require different settings, but the settings outlined in this example are
some of the more common and secure ones used to set up this scenario.
412 CHAPTER 14 Securing Web (HTTP) Traffic
Summary
ISA Server 2006 is, without doubt, one of the better web proxy and filtering solutions
available today. In addition to providing for edge firewall capabilities, ISA also allows for
complete reverse-proxy scenarios with HTTP, allowing for secure publishing of web
services. In addition, the Application-layer filtering capabilities of ISA give excellent HTTP
filtering capabilities, including locking down specific applications based not on their port
numbers but on the actual content of the HTTP packet itself.
Best Practices
. Use ISA Server 2006 to secure websites with end-to-end SSL encryption.
Pages:
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660