7 Layers?

Sunday, February 20, 2005

More on ISA 2004

After a very long time I’m back on my track, as I’m busy here in karachi doing some projects. And I got a chance to work on ISA 2004.

ISA2004 is an application aware firewall or I better say more than a firewall. It does not only block and forwards the port; it gives you the control of each and every application running on your network. It gives full control to the network administrators to manage the clients running applications on their computer. It is almost impossible to bypass ISA2004 security if you have implemented on your LAN. It is the best of the best product I’ve ever worked. It does block everything. Here you feel confidence and get relax that no user on your LAN can misuse the network and Internet. Once you have installed the ISA 2004 on the machine then that machine is totally locked, you have to login to that machine physically then define the policies then you can work according to your wish i.e. physically or remotely.

As far as security is concerned you can have many networks in just one firewall. You need to add only network adapters and that’s it. You can have multiple networks and each and every network can be isolated easily. More over you can implement the policies on each and every network address pool, it depends how you have done the sub-netting. Even no one can guess that you are running ISA2004 server at the backend.

ISA2004 blocks all peer-to-peer applications intelligently if even these applications (kazaa, morpheus uses port 80) try to bypass the firewall.

The only thing which is not available in ISA2004 is bandwidth controlling. This is the only thing which is lacking in this product otherwise this is the best product to suit any kind of network if they are looking for security or caching or application filtering.

I’ve tested this product on a network of 50 computers where we have every kind of users, from business users to computer geeks. ISA2004 has given very tough time to computer geeks because all the time they need full bandwidth pipe and they want to download whole internet stuff on their PC.

During the implementation of this ISA2004 product I had few problems and I’m very
thankful to Thomas Shinder who helped me whenever I asked the questions on

I suggest you to go for ISA2004 especially in a corporate network where you want full control on each and every application, on the other side if you are managing data center then you take advantages of multiple DMZs. Once you are done with this product then this will become your first choice.

If you need more info about ISA2004 then keep visiting this blog or email me at adnanrafik@yahoo.com links to visit



Post a Comment

<< Home