418 CHAPTER 15 Securing RPC Traffic
Exchange
Mailbox
Server
Exchange
Mailbox
Server
Exchange
Mailbox
Server
Exchange CAS
(OWA) Server
Exchange CAS (OWA)
Colorado
Springs
Bogota Kiev
ISA ISA
Colorado Springs Email Network
Colorado Springs Internal Network
Clients
Exchange
Mailbox
Server
Bogota Internal Network
Clients
Clients
ISA
Kiev Internal Network
Bogota Email Network Kiev Email Network
FIGURE 15.3 Using ISA Server to secure Exchange server network segments.
Publishing RPC Services with ISA Server 2006
ISA Server 2006 utilizes a concept of a server publishing rule to protect specific services
such as RPC. A server publishing rule enables a specific service on a single server to be
published to the clients on a separate network. For example, an Exchange server in a
protected Exchange network can have the MAPI RPC service published to the clients in
the separate Clients network, making only that service available to them. Or, a DNS server
in a Perimeter (DMZ) network could have the DNS service published to clients in an internal
network.
419 Publishing RPC Services with ISA Server 2006
15
Server publishing rules are often confused with ISA Access rules, which enable specific
protocols to traverse between networks.
Pages:
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669