Welcome, Guest. Please login or register.
Did you miss your activation email?
Sunday 29 December 2024, 09:45:52 am

Login with username, password and session length

CLICK HERE for the The official Endian Roadmap and Issue tracker
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  EFW SMTP, HTTP, SIP, FTP Proxy Support
| | |-+  Moving From ISA 2006 To Endian - Confused
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Moving From ISA 2006 To Endian - Confused  (Read 8912 times)
FlashPan
Jr. Member
*
Offline Offline

Posts: 1


« on: Friday 23 July 2010, 09:49:20 pm »

Hi All,

I've been browsing around this forum and the web for the past  of days and have got myself turned around in circles   Smiley

Basically I'm changing jobs and the firm I'm joining as virtually no protection.  Due to budgets etc I'm thinking of using Endian EFW 2.4 respin but am coming from a ISA 2006 background.

So far I'm loving what I am seeing with Endian, successfully installed and joined my lab domain and can reach the web but I'm looking to lock down access to the users (with authentication).

If I can explain how I've setup ISA in the past itmay help you understand what I am after.

ISA was a perimiter firewall - 1 green and 1 red interface.  By default all ports are blocked in ISA and you would have to manually create a new policy/access.

eg:

1:  Name: Default - Action: Deny - Protocols: All Trafic - From: All Networks - To: All Networks - Condition: All Users

I would then create:

2:  Name: Allow HTTP - Action: Allow - Protocols: HTTPS - From: Internal (green) - To: External (red) - Condition: SG-Allow-HTTP
3:  Name: Allow FTP - Action: Allow - Protocols: FTP - From: Internal (green) - To: External (red) - Condition: SG-Allow-FTP

The "Condition" element is a Windows AD security group. So if you are not a member of say "sG-Allow-FTP" then your FTP access request would be denied.

So... what I am after is more or less a completely locked down Endian system and then manually creating the access rules for AD user groups.

Can anyone please be kind enough in helpig me figure out this type on configuration within Endian?

Maybe I'm getting myself confused with the Firewall page and the Proxy page? Smiley

Thanks in advance and be prepared for possibly many more posts Wink

Cheers
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com