ISA 2004 Web Publishing HTTP Filter stops default website page URL redirection

Quick questions: In a firewall, if you’re presented with a checkbox asking if you want to block requests with ambigious extensions, what would you do? I’m guessing the answer from 99% of you would be “of course, I want to be as secure as I can be”. Well, read on. Maybe you won’t want to check that box…

0

ISA 2006 Beta Available

http://www.microsoft.com/isaserver/2006/default.mspx  is worth checking out – you can download the beta of ISA Server 2006. I can’t download it myself as I’m off-site, but will be sure to install it at home in the next couple of weeks…

0

ISA Server 2004 SP2 Availability

You may have spotted I haven’t posted for a few days, but I’ve been off ill with the ‘flu. Hence, my excuse for not having spotted the availability of ISA Server 2004 SP2 last week. It’s also worth mentioning Maartens excellent blogcast on the features. ISA Server 2004 SP2 Site (for download links and further information)…

0

IT Forum Highlights in Reading

For those of you who were unable to attend IT Forum 2005 in November, a quick reminder that there are two full-day events re-running some of the most popular content. This will be held on the Microsoft Campus in Reading. The registration links are below – I know they are close to filling up, but if you…

0

RPC/HTTP and OWA through ISA Followup

If you’ve been watching the series on RPC/HTTP I recorded a little while back, you’ll know that I did a “trick” to allow both OWA and RPC/HTTP connectivity through a single external IP Address under ISA Server 2004. There was an annoying flaw which although caused no problem directly, caused ISA Server to log warnings…

2

ISA Server 2004 Port Scan alerts

I’ve been running ISA Server at home for a number of years now – first with ISA 2000, and more recently ISA Server 2004 SP1. I’ve realised over time that there are many false alerts of port scans, and know that most times, they are false. However, there’s an interesting article here which goes into…

0

Part 25: Infrastructure essentials Blogcast – RPC/HTTP for Outlook & Exchange – Integrated Auth

Continuing the blogcast series on infrastructure essentials. The final part to the RPC/HTTPS series shows you how to alter the configuration we have such that Outlook 2003 can move seamlessly between external and internal connectivity through the use of integrated authentication. To do this, we need to change both the ISA server and the Exchange server….

1

Part 24: Infrastructure essentials Blogcast – RPC/HTTP for Outlook & Exchange – RPC Publishing

Continuing the blogcast series on infrastructure essentials. In the last part, forms based authentication for Outlook Web Access was back running again, bouncing through the localhost listener. In this part, we put RPC/HTTP back into place. We create a publishing rule for the Exchange Virtual Directory being published (/rpc). We also create a publishing rule…

0

Part 23: Infrastructure essentials Blogcast – RPC/HTTP for Outlook & Exchange – OWA back to HTTPS

Continuing the blogcast series on infrastructure essentials. We now move Outlook Web Access back to HTTPS, and we correct a naming error on the Network Listener “FBA LocalHost 443” in the last part (it’s actually listening and remains listening on port 80). After having ripped things apart over the last few parts to this series,…

1

Part 22: Infrastructure essentials Blogcast – RPC/HTTP for Outlook & Exchange – Bounce OWA through Localhost

Continuing the blogcast series on infrastructure essentials. To make the next steps clearer, here’s a picture of what we’re trying to achieve in combining Forms Based Authentication with RPC/HTTP, and the routes through which traffic will flow. Hopefully a picture speaks a thousand words – the blogcast goes through configuring ISA to bounce OWA traffic…

2