2 NIC, ISA, Router - Overkill? > Small Business Server Support Forum

ForumsSurveysChat

Support

Forum

Download

About

Registered users

	Membership:
	Latest:Taganova Ronya
	New Today:12
	New Yesterday:9
	Overall:23415

Private messaging

You must be logged in to use this module.

Top 10 posters

Name	Posts
Mariette Knap	12968
Marina Roos	12627
Eriq Neale	2117
Stan Guinn	1918
Michael Patrick	1914
Robert Pearman	1791
Nick Pieters	1425
william warren	651
Stewart Brown	620
Kevin D.	579

Articles

»	Antivirus
»	Backup and restore
»	BlackBerry
»	Branch offices
»	Configuring routers
»	CRM
»	Exchange Server 2000
»	Exchange Server 2003
»	Exchange Server 2007
»	ISA Server 2000
»	ISA Server 2004
»	Macintosh integration
»	Network configuration
»	Planning and installing your SBS server
»	Press releases
»	Project server
»	Public articles
»	Remote Access
»	SBS 2000
»	SBS 2003
»	SBS 2003 R2
»	SBS 2008
»	Securing your SBS 2003 network
»	Server issues
»	Service Packs
»	Sharepoint
»	SQL 2000
»	SQL 2005
»	SQL 2008
»	Subscriber articles
»	Terminal Servers
»	Third party solutions
»	Windows SBS 2003 to 2008 Migration Guide
»	Workstations

View all articles

Welcome unauthorized visitor

If you want to join us in the discussions on this forum you need to register first. Registration is free! If you are already a registered user please login to join the forum.

Small Business Server Support Forum

Unanswered Active Topics

Forums Search

Forums > 3rd party software and network information > How should I setup my network?

Subject: 2 NIC, ISA, Router - Overkill?

Prev Next

You are not authorized to post a reply.

Author

Messages

Douglas Johnson User is Offline

United States
Member since
7/30/2005

Registered Users
Posts: 28

4/27/2008 07:24 AM
I've been running SBS2000/03 for 6 years now. Time to upgrade/install a new server. My question is simple - my current config is that which tends to be recommended - 2 NICs, Router, ISA. The MSCE IT consultant I occasionally call on when I really get stuck doesn't set up his servers this way - he doesn't use ISA, doesn't like it. Just relies on the router. I'm not doing anything involving FTP or web server to the outside world - so I'm wondering, is ISA overkill behind a router? What's the rationale for being so redundant? This IT guys things ISA just slows the server down - and isn't needed behind the hardware firewall built into the router. My new server has two NICs and I'll probably set it up like the old one - router between the NICs, using ISA. I just wanted to know what the rationale is for doing this. He doesn't like to touch my server because he doesn't like the config - odd to me since from what I've read, this is a standard setup. I'm just not sure for my use (file, print, web access, exchange server SMTP, BES) whether ISA gets in the way, slows things down, or is a good thing. Thanks for any comments.

Stan Guinn User is Offline

Texas, USA
Member since
12/29/2005

Platinum Membership
Posts: 1918

4/27/2008 03:31 PM
->What's the rationale for being so redundant?<- I don't think being redundant is the rationale. Put this in time perspective. When SBS2003 was released, the programming on it was done in the 2000-2002 time frame. Back then top quality firewall appliances were very expensive. It was a marketing ploy by MS to include ISA. Made you think you were getting an excellent benefit because firewalls were fo high dollar. Nowadays with quality firewall appliances like SonicWall, Watchguard and others, ISA is not so much of a benefit anymore. The next version of SBS is not going to include ISA. And the recommended configuration calls for a single NIC.

Douglas Johnson User is Offline

United States
Member since
7/30/2005

Registered Users
Posts: 28

4/27/2008 07:05 PM
Thanks - that's good to know. So what is a good quality router - I just have a $90 Linksys - I don't think my IT consultant uses anything too fancy. Is NAT, VPN, and a few ports sufficient? Should I skip ISA and the 2 NIC setup or amd I better off keeping this "standard" with SBS2003? This is a small SBS implementation - 10 users. Thanks for your help - hate to be a newbie on this.

Marina Roos User is Offline

The Netherlands
Member since
3/24/2005

Forum Admins
Posts: 12627

5/25/2008 11:08 PM

Hi Douglas,

If you are going to skip ISA and the 2 nic setup, you really want a true and proper hardware firewall, not the cheap 90 $ thing. You want device that can log whatever is happening and alert you in cases something weird is going on.

Marina Roos Smallbizserver.Net Administrator

Mission accomplished. We have joined the branch office to our SBS 2003 Headquarters and have the same user experience on the branch office as we have on our local network at the Headquarters. Want to know how? Signup up for a subscription and get instant access to the article series 'How to add an additional Domain Controller from a remote office to the SBS domain'

Douglas Johnson User is Offline

United States
Member since
7/30/2005

Registered Users
Posts: 28

5/26/2008 12:42 AM
I'm in the process of setting up a Zyxel ZyWall 2 Plus to replace the Linksys - that should do what I need. I am using a two NIC setup.

You are not authorized to post a reply.

Forums > 3rd party software and network information > How should I setup my network? > 2 NIC, ISA, Router - Overkill?

ActiveForums 3.7

Forum policy

These Discussion Forums are dedicated to the discussion of the Small Business Server and related server and client software. For the benefit of the community please observe the following posting guidelines:

No Advertising. This includes promotion of commercial products and non-commercial products which are not directly related to Small Business Server and related server and client software.
No Flaming or Trolling.
No Profanity, Racism, or Prejudice.
Site Moderators have the final word on approving/removing a thread or post or comment.