Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    Chapter 7. Deploying ISA Server as a Rev... > Configuring a Unihomed ISA Server to...

    Configuring a Unihomed ISA Server to Reverse Proxy Web Services

    Reverse proxy of a web server is almost exactly the same on a unihomed server as a multi-homed one, just as it was with the OWA publishing rules. The same issues regarding host headers and end-to-end SSL encryption apply as well, and should be taken into account. For step-by-step guides to securing web traffic, see Chapter 14.

    Note

    One common mistake made when using ISA as a reverse-proxy system in an existing DMZ is to configure a web publishing rule to make the traffic appear to come from the original client’s IP, instead of ISA’s IP. This confuses most firewalls, who assume that the traffic is being spoofed, and it is subsequently dropped. In a unihomed DMZ deployment, ISA should typically be configured to make the traffic appear to come from itself. This setting can be found on the To tab of the publishing rule, such as what is shown in Figure 7.6.



      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial