Internet Security & Acceleration Server 2004 Enterprise Edition
June 10, 2005
$5,999 per processor
- Ease of Use:
- Value for Money:
- Overall Rating:
Easy to manage; excellent support for Exchange server.
Reliance on Windows 2000/2003 server places an overhead on performance.
A worthy companion to faster hardware firewalls.
Microsoft's Internet Security & Acceleration (ISA) Server 2004, is the company's application for turning a Windows 2000 or 2003 server into an enterprise firewall. Installation was painless on our test Windows 2003 server.
Management is through a Microsoft Management Console snap-in. Rather than the simple tree structure that is the de facto standard for these consoles, Microsoft has made a concerted effort to make it easier to use, including a main page full of shortcut icons and wizards.
Management in an enterprise environment has also been carefully considered. Using the Delegated Permissions Wizard you can easily assign admin privileges to individual users and groups. And because the firewall integrates with Active Directory, you do not have to change your company's structure, and existing users and groups can be reused. Privileges can be assigned to control access to each ISA server and each firewall service, a high level of granularity to suit large environments.
Configuring the firewall is a simple job of selecting the source and destination port, and the service to allow or deny. Further control can be achieved by selecting the networks each rule applies to and the active directory users (Radius authentication is also supported). There is a full stateful inspection firewall, and common services, including web and FTP, are catered for by proxies.
There is also full support for Exchange servers, right down to being able to inspect encrypted data. This support makes it easier to allow secure remote access to your Exchange server. Finally, with a full VPN, you can create encrypted tunnels in much the same way as you create rules. But beyond the firewall and acceleration features, ISA hits a dead end. Anti-virus or intrusion detection are provided by third-party applications, licensed separately.
Running on Windows Server, ISA does not have the network speed to keep up with the dedicated hardware appliances. But the excellent delegated management and application support means ISA Server can still serve well in an enterprise environment, particularly where access to an Exchange server is critical.
Sign up to our newsletters
SC Magazine Articles
- Zero-day in Fiat Chrysler feature allows remote control of vehicles
- 'GSMem' malware designed to infiltrate air-gapped computers, steal data
- All smartwatches are vulnerable to attack, finds study
- Apple App Store and iTunes buyers hit by zero-day
- Hacking Team issues new statement while researcher clears up Android tool confusion
- United reportedly hacked by same group that breached Anthem, OPM
- HAMMERTOSS malware represents culmination of 'best practices' for cyber attackers
- Hundreds of Massachusetts General Hospital patients notified of data incident
- Majority of Android devices vulnerable to denial-of-service bug
- Security concerns raised at Windows 10 roll-out