Ever wonder what you can't do with ISA?

No, really.  The ISA team has a document out that details the most common misconfigurations for ISA Server 2004:

 

https://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/unsupportedconfigs.doc

This is a nice complement to this week's ISA podcast.  For instance, did you know:

  • ISA Server Does Not Support Multiple External Interfaces
  • ISA Server Does Not Support a Network-Behind-Network Configuration
  • NLB Is Not Supported on ISA Server 2004 Standard Edition
  • ISA Server 2004 Standard Edition (without Service Pack 1) does not support Internet access requests from remote VPN clients through web proxy on the ISA Server computer to which VPN remote clients are connecting
  • You Cannot Use Multiple Server Certificates for a Single SSL Listener
  • RPC over HTTP traffic encrypts the RPC data in HTTP. RPC over HTTP data is not inspected by ISA Server 2004
  • ISA Server cannot publish secure File Transfer Protocol (FTP)
  • ISA Server Does Not Support Routing Protocols
  • When ISA Server 2004 is installed, Remote Installation Services (RIS) takes an extreme length of time to deploy an image
  • ISA Server Is Not Supported for Virtual PC and Virtual Server
  • Requests from Web Proxy Clients Cannot Be Authenticated Using a Client Certificate