Configuring ISA Server 2000: Building Firewalls for Windows 2000
Using Microsoft s firewall software to protect local-area networks, enable Internet remote access, and define security policies.
TABLE OF CONTENTS Configuring ISA Server 2000: Building Firewalls for Windows 2000
Frequently Asked Questions
The following Frequently Asked Questions, answered by the authors of this book, are designed to both measure your understanding of the concepts presented in this chapter and to assist you with real-life implementation of these concepts. To have your questions about this chapter answered by the author, browse to www.syngress.com/solutions and click on the Ask the Author form.
| Q. | I have configured my SecureNAT client to use a protocol rule that allows all protocols, but I cannot access Napster. Why is this happening? | |
| A. | Remember that SecureNAT clients can access only protocols that are included in the list of protocol definitions, even when you enable an all protocols allowed configuration. Firewall clients do not suffer from this limitation; therefore, you do not need to configure a separate protocol definition for each protocol when allowing access to all protocols for firewall clients. | |
| Q. | I have many users who want to access external PPTP servers on the Internet. However, I want a way to limit the users who can access PPTP servers. How can I do this? | |
| A. | Unfortunately, you cannot control who accesses PPTP servers after you have enabled the SecureNAT outbound PPTP access packet filters. Protocol rules are limited to controlling access for TCP/UDP-based protocols and therefore cannot control access to General Routing Encapsulation protocol (GRE, IP protocol 47). Once you enable the filter, all users will be able to call out through PPTP. | |
| Q. |
Copyright Syngress Publishing, Inc. 2001 under license agreement with Books24x7
