ISAserver.org Blogs RSS

Deb Shinder Blog - FEATURED RSS

Deb Shinder, MVP (Enterprise Security) continues the Shinder tradition of providing ISAserver.org readers with the latest and greatest news, tips and tricks for optimizing your ISA Server or TMG based network security infrastructure. This blog will address all topics pertaining to the Microsoft firewall products and how ISA/TMG administrators can get the most out of them so your company’s employees can use the Internet safely and productively.

Visit the Deb Shinder Blog

Stefaan Pouseele Blog RSS

Stefaan Pouseele, an ISA Server MVP, discusses issues brought up within various ISA articles and Microsoft publications. Updates to the ISA Firewall, protocol support, discussions on the different ISA clients, ISA features, how to clean up network traffic and links to new ISA server literature are all be included within the blog. Get help on troubleshooting the ISA network firewall and learn how to create good security policies. Coverage on ISA Server 2006 also appears.

Visit the Stefaan Pouseele Blog

Latest ISAserver blog posts

Remote Access Fails for L2TP VPN Clients when NLB is Enabled on the TMG Firewall

Date - Dec 31st, 2011

Author - Debra Shinder

NLB and L2TP/IPsec – can you imagine a more hellacious troubleshooting experience? If you can, then keep it to yourself, I already have enough nightmares In this article, Brett Crane from Microsoft shows you how to solve at least one issue related to L2TP/IPsec and NLB on the TMG firewall. more...

TMG Goes Into Lockdown Mode After Switching to Text Logging

Date - Dec 31st, 2011

Author - Debra Shinder

Ouch! What’s up with that? Sometime you want or need to switch to text logging to get the information you need in a format that you can work with. In this blog post, the TMG team shows you the problem and a solution. Check it out at: http://blogs.technet.com/b/isablog/archive/2011/12/28/switching-to-text-file-logging-fails-with-event-id-11003.aspx HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder@isaserver.org. more...

The Reasons for the DCA Showing the DA Connection is Broken What Its Actually Working

Date - Dec 31st, 2011

Author - Debra Shinder

Every wonder why the DCA shows that your DirectAccess connection is broken when in fact it’s working fine? Check out the answer to this question on the UAG team blog over at: http://blogs.technet.com/b/edgeaccessblog/archive/2011/11/09/on-a-da-client-the-dca-shows-a-red-x-or-a-yellow-exclamation-mark-even-when-the-connection-works-fine.aspx HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder@isaserver.org. more...

How to Get SSO to SharePoint through UAG with Two Authentication Schemas

Date - Dec 31st, 2011

Author - Debra Shinder

“…In this case, two different categories of users gain access to the SharePoint farm via UAG: internal users (while outside of the company network), and partner users. Windows Integrated authentication is used in SharePoint for internal users, while form-based authentication is used for partner users. However, the SharePoint URL is the same for both types of users. more...

UAG Web Monitor Shows DirectAccess Configuration Note Healthy

Date - Dec 31st, 2011

Author - Debra Shinder

What do you do about that? Check out the problem and the answer over on the UAG team blog at: http://blogs.technet.com/b/edgeaccessblog/archive/2011/12/15/the-uag-directaccess-web-monitor-shows-network-security-as-not-healthy.aspx HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder@isaserver.org. more...

UAG Well Positioned in Gartner Magic Quadrant for SSL VPNs

Date - Dec 30th, 2011

Author - Debra Shinder

“Microsoft has offered SSL VPN support since 2006, based on technology acquired from Whale Communications, starting with the Intelligent Access Gateway (IAG), and followed by the Unified Access Gateway (UAG). Buyers frequently pick UAG to provide secure access, in combination with SharePoint and Forefront. UAG is certified to CC EAL2 and up, and uses the Windows cryptographic functions, which are compliant with FIPS 140-2. more...

Richard Hicks Runs Survey on How You Use the Change Description Box

Date - Dec 30th, 2011

Author - Debra Shinder

Richard Hicks is running a survey on how you use the Change Description Box in the TMG firewall console. It’s an interesting question, because I’m sure we all use it slightly differently. For example, I use it to keep track of some changes and put detailed notes and at other times won’t enter anything in the box, since I can go to the change log and see what changes where made. more...

Great Presentation on IPv6 Security

Date - Dec 30th, 2011

Author - Debra Shinder

A lot has been said about IPv6, much of it FUD. There are some common misconceptions regarding IPv6 security. This presentation addresses those misconceptions and also gives you a great overview of what you need to know about IPv6 from a security perspective. Check it out at: http://www.si6networks.com/presentations/deepsec2011/fgont-deepsec2011-hacking-ipv6-networks.pdf HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder@isaserver.org. more...

Everything You Ever Wanted to Know about the DirectAccess Connectivity Assistant

Date - Dec 30th, 2011

Author - Debra Shinder

Including Polling interval! Check out the UAG Team Blog for more information at: http://blogs.technet.com/b/edgeaccessblog/archive/2011/12/20/directaccess-connectivity-assistant-polling-interval.aspx HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder@isaserver.org. more...

Issues with Deploying TMG 2010 Services Packs at the Branch Office

Date - Dec 30th, 2011

Author - Debra Shinder

“…Here’s a new KB article we published on TMG 2010. This one actually first came out a couple weeks ago but since it wasn’t announced at the time I thought I’d send out a quick heads up just to let you know it was there. more...