New job, new network problem

Discussion in 'General Cisco Certifications' started by Andy_M, Jan 20, 2011.

  1. zebulebu

    zebulebu Terabyte Poster

    3,748
    330
    187
    Or - for another perspective, you could ask 'The Security Guy' (i.e. the person on here who's actually worked for three years as a security engineer). He will tell you that ISA is (and has been since it first replaced ms proxy 2.0) the most unfairly-maligned piece of software Microsoft have ever released. It is phenomenally stable, far more flexible than any other firewall software/OS ever released and capable of doing stuff at layer 7 that most packet inspection gumph can only dream of. ISA's one failing (other than the failure to market it effectively on MS's part) is that it is TOO good. The features it encompasses are very difficult to learn in any depth unless you work with it full-time.

    Ask him if he agrees with you... :twisted:
     
    Certifications: A few
    WIP: None - f*** 'em
  2. jonny7_2002

    jonny7_2002 Byte Poster

    191
    9
    37
    To be truthfull, the real problem i find with ISA is..... i do not know enough about it!! thats the bottom line, Its not that its rubbish!

    I slate a guy i work with as, if he doesnt understand something then he says "Its S**T!" But just because you dont have the knowledge/dont understand it does not mean "Its S**T!"

    As i said above in my retracted statement :D, its not rubbish its just i would not choose to use it because i dont know it very well therfore its not my favorite program.....

    I'm rambling now.... toooo much coffee today!
     
    Certifications: CCNA R&S, CCNP R&S, CCDA, CCNA Voice, CCNA Wireless & CCNA Security
    WIP: CCIE V5 (when its out)
  3. BosonMichael
    Honorary Member Highly Decorated Member Award 500 Likes Award

    BosonMichael Yottabyte Poster

    19,183
    500
    414
    For what it's worth, I agree with you. It is very flexible, and like I said, it's certainly not rubbish. The reason I wouldn't recommend it is simply because there are solid, stable, and feature-rich firewall/proxy/Internet gateway solutions out there that are less expensive and don't require the use of a server.
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  4. zebulebu

    zebulebu Terabyte Poster

    3,748
    330
    187
    For anything below layer 7 I'd definitely agree. ISA is wasted as a packet filter (though perfectly capable of doing this, it's complete overkill). For anyone who takes security seriously, ISA is the way to go for packet inspection - second only to Snort, but a damn sight easier for the average joe to set up and maintain.
     
    Certifications: A few
    WIP: None - f*** 'em
  5. BosonMichael
    Honorary Member Highly Decorated Member Award 500 Likes Award

    BosonMichael Yottabyte Poster

    19,183
    500
    414
    I've seen really good things out of Cisco's offerings with regards to packet inspection, but it's probably not as easy to configure. I haven't used ISA in a long while - probably since ISA 2004. I'm sure it's gotten much better.
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  6. Sparky
    Highly Decorated Member Award 500 Likes Award

    Sparky Zettabyte Poster Moderator

    10,718
    543
    364
    Really? Didnt think that would free up some IP addresses to resolve this issue. :rolleyes:
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) MS-900 AZ-900 Security+ Network+ A+
    WIP: Microsoft Certs
  7. craigie

    craigie Terabyte Poster

    3,020
    174
    155
    But he will be able to sing the 'thong song' :biggrin
     
    Certifications: CCA | CCENT | CCNA | CCNA:S | HP APC | HP ASE | ITILv3 | MCP | MCDST | MCITP: EA | MCTS:Vista | MCTS:Exch '07 | MCSA 2003 | MCSA:M 2003 | MCSA 2008 | MCSE | VCP5-DT | VCP4-DCV | VCP5-DCV | VCAP5-DCA | VCAP5-DCD | VMTSP | VTSP 4 | VTSP 5
  8. jonny7_2002

    jonny7_2002 Byte Poster

    191
    9
    37
    Just go back to tyewriters.... no IP's will get used and so much easier to support! :D
     
    Certifications: CCNA R&S, CCNP R&S, CCDA, CCNA Voice, CCNA Wireless & CCNA Security
    WIP: CCIE V5 (when its out)
  9. Bluerinse
    Honorary Member

    Bluerinse Exabyte Poster

    8,878
    181
    256
    yeah but changing those ribbons is a bear :biggrin
     
    Certifications: C&G Electronics - MCSA (W2K) MCSE (W2K)

Share This Page

Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.