RE: AD Aware Firewall/Proxy device

[<Steveb () tshore com>]

I had considered that except that we need it to integrate user level
access with Active Directory.

Thank you,

Steve Bostedor
http://www.vncscan.com 

-----Original Message-----
From: overlord359 () gmail com [mailto:overlord359 () gmail com] On Behalf Of
William Starling
Sent: Monday, February 27, 2006 1:30 PM
To: security-basics () securityfocus com
Subject: Re: AD Aware Firewall/Proxy device

A Linux router (which can be made from a very cheap machine) with
correctly configured iptables between your server and the internet would
do the job very well. However without some Linux knowledge it may be
difficult to set up.

On 2/25/06, Steveb () tshore com <Steveb () tshore com> wrote:
> Hi all,
>
> We are primarily a Windows and Mac shop.  We're currently running 
> Microsoft's ISA server 2000 in a Windows 2000 AD environment.  While 
> other firewalls are in place at the parameter to control incoming 
> traffic, we use the ISA server to control user access to the web.
>
> The one thing that I like about the ISA server is that it integrates 
> with Active directory to allow per user access to the Internet.  What 
> I don't like about it, though, is it's lack of manageability and 
> reporting without third party tools (that further bloat an already 
> over-bloated product).
>
> Can anyone suggest a lightweight, yet powerful firewall device that 
> will allow us to control employee access to the internet based upon AD

> username, machine IP address, and destination websites?  I know that 
> there are a bunch out there but I've come to trust many of you here 
> and I'd love to hear your experiences and opinions.
>
> Thank you,
>
> Steve Bostedor
> Bozteck President
> http://www.vncscan.com
>
>
> ----------------------------------------------------------------------
> ----- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The 
> Norwich University program offers unparalleled Infosec management 
> education and the case study affords you unmatched consulting
experience.
> Tailor your education to your own professional goals with degree 
> customizations including Emergency Management, Business Continuity 
> Planning, Computer Emergency Response Teams, and Digital
Investigations.
> http://www.msia.norwich.edu/secfocus
> ----------------------------------------------------------------------
> -----

------------------------------------------------------------------------
---
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich
University program offers unparalleled Infosec management education and
the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity
Planning, Computer Emergency Response Teams, and Digital Investigations.


http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---



---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------