1. Trang chủ
  2. » Công Nghệ Thông Tin

Tài liệu Module 5: Configuring Access to Internal Resources potx

36 456 0

Đang tải... (xem toàn văn)

Tài liệu hạn chế xem trước, để xem đầy đủ mời bạn chọn Tải xuống

THÔNG TIN TÀI LIỆU

Thông tin cơ bản

Định dạng
Số trang 36
Dung lượng 2,8 MB

Nội dung

Module 5: Configuring Access to Internal Resources Overview Introduction to Publishing Configuring Web Publishing Configuring Secure Web Publishing Configuring Server Publishing Configuring ISA Server Authentication Lesson: Introduction to Publishing Multimedia: Using ISA Server 2004 to Enable Access to Internal Network Resources What Are Web Publishing Rules? What Are Server Publishing Rules? DNS Configuration for Web and Server Publishing Multimedia: Using ISA Server 2004 to Enable Access to Internal Network Resources What Are Web Publishing Rules? Web publishing rules provide the following features: Publish HTTP or HTTPS content Application-layer filtering Path mapping User authentication Content caching Publish multiple Web sites with one IP address Link translation Logging client IP address Secure Web publishing rules enable the use of SSL to encrypt network traffic between client and server ISA Server What Are Server Publishing Rules? Server publishing rules provide the following features: Support for encryption Publish content using multiple protocols Logging client IP address Application layer filtering for protocols with application filters Server publishing rules forward requests to internal servers based on protocol and port number ISA Server DNS Configuration for Web and Server Publishing Perimeter Network www.cohovineyard.com DNS Server DNS Server Internet ISA Server Internal Network Practice: Configuring DNS Applying the 3-Leg Perimeter Template Creating the Internet DNS records Creating the internal DNS records Testing internal access to cohovineyard.com Web sites Den-Web-01 Gen-Web-01 Den-ISA-01 Internet Den-DC-01 Lesson: Configuring Web Publishing Web Publishing Rules Configuration Components How to Configure Path Mapping How to Configure Web Listeners How to Configure Link Translation How to Configure a New Web Publishing Rule Web Publishing Rules Configuration Components Web publishing rules configuration: • Action • Name • Users • Traffic source • Public name • Web listener • Path mappings • Bridging • Link Translation Practice: Configuring Secure Web Publishing Enabling Access to the Certificate Authority Web Site Installing a Server Certificate Configuring a New Secure Web Publishing Rule Testing the Secure Web Publishing Rule Gen-Web-01 Den-Web-01 Den-ISA-01 Internet Den-DC-01 Lesson: Configuring Server Publishing Server Publishing Configuration Options How Server Publishing Works How to Configure a Server Publishing Rule How to Publish Media Services How to Publish Microsoft SharePoint Portal Server How to Troubleshoot Web and Server Publishing Server Publishing Configuration Options Server publishing rules configuration: Action Traffic Traffic source Traffic destination Networks Schedule How Server Publishing Works Media Publishing Rule: Port 1755 mms://media.cohovineyard.com CohoVineyard Media Site CohoVineyard FTP Site ISA Server ftp://ftp.cohovineyard.com FTP Publishing Rule: Port 21 How to Configure a Server Publishing Rule Server Publishing Rule Wizard configuration: Select server to publish Select protocol Select IP addresses where clients will connect Practice: Configuring Server Publishing Configuring a New Server Publishing Rule Testing the Server Publishing Rule Den-Web-01 Gen-Web-01 Den-ISA-01 Internet Den-DC-01 How to Publish Media Services ISA Server includes protocol definitions and application filters for: Microsoft Media Streaming protocol (MMS)  Uses either TCP port 80 or TCP and UDP port 1755  Enables access for Windows Media Player client Progressive Networks protocol (PNM)  Also called RealNetworks Streaming Media protocol  Uses TCP port 7070  Enables access for RealPlayer 5.0 and earlier clients Real Time Streaming Protocol (RTSP)  Uses port 554 for fast access and port 80 for slower access  Enables access to media created and read with RealSystem G2 tools How to Publish Microsoft SharePoint Portal Server A portal can present different types of information stored on different servers on the internal network ISA Server can securely publish this information to the Internet using: Web publishing to publish the HTTP and HTTPS content using path mapping and link translation to hide the complexity of the internal network configuration Flexible authentication to grant only the required level of access Server publishing to publish services running protocols other than HTTP or HTTPS SSL bridging and tunneling to secure network traffic on the Internet How to Troubleshoot Web and Server Publishing To troubleshoot Web and server publishing issues: Check the resource availability Check the DNS records Check the error message Check which ports the ISA Server is listening on for connections Check the publishing rule configuration Check the SSL configuration and certificates Lesson: Configuring ISA Server Authentication How Authentication and Web Publishing Rules Work ISA Server Web Publishing Authentication Scenarios Using RADIUS for Authentication How to Implement RADIUS Server for ISA Authentication How Authentication and Web Publishing Rules Work Together ISA Server uses authentication to grant access to publishing rules: When the publishing rule specifies a user set other than the All Users group Based on the Web listener authentication methods specified for a Web publishing or secure Web publishing rule By processing the firewall rules in order of priority When a firewall rule matches, but requires authentication, ISA Server will prompt for user credentials ISA Server Web Publishing Authentication Scenarios Web Server authentication ISA Server authentication ISA Server ISA Server and Web server authentication Using RADIUS for Authentication RADIUS Server Domain Controller RADIUS Client ISA Server Using RADIUS for authentication means that ISA Server can authenticate users based on their Active Directory credentials without requiring that the computer running ISA Server be a member of an Active Directory domain How to Implement RADIUS Server for ISA Authentication To implement RADIUS authentication: Install and configure IAS to use Active Directory for authentication and configure the ISA Server as a RADIUS client Configure the Active Directory user accounts or configure remote access policies to enable dial-in access Configure ISA Server to use the RADIUS server and configure a Web listener to use RADIUS authentication Lab: Configuring Access to Internal Resources Exercise 1: Configuring ISA Server Authentication and Secure Publishing Exercise 2: Testing the ISA Server Configuration Den-Web-01 Gen-Web-01 Den-ISA-01 Internet Den-DC-01 ... access Configure ISA Server to use the RADIUS server and configure a Web listener to use RADIUS authentication Lab: Configuring Access to Internal Resources Exercise 1: Configuring ISA Server Authentication... ISA Server Internal Network Practice: Configuring DNS Applying the 3-Leg Perimeter Template Creating the Internet DNS records Creating the internal DNS records Testing internal access to cohovineyard.com... to use Active Directory for authentication and configure the ISA Server as a RADIUS client Configure the Active Directory user accounts or configure remote access policies to enable dial-in access

Ngày đăng: 27/02/2014, 05:20