Professional Documents
Culture Documents
Security ISA Server 2004 enables you to configure VPN clients as a separate network and create distinct access
policies policies for each VPN client. The rules engine uses the access policy to check requests from VPN clients,
New
and statefully inspect these requests, and dynamically open connections between the VPN clients and the
stateful network.
inspection
for VPN
Interoperability with third- Support for the industry-standard IPSec protocol means that ISA Server 2004 can plug into
New
party VPN solutions environments with VPN infrastructures from other vendors, including infrastructures employing IPSec
tunnel mode configurations for site-to-site connections
Security Infrastructure
Improved Application filtering ISA Server 2004 enables you to choose from a variety of new application filtering capabilities and server
publishing scenarios. One new filtering capability, enhanced HTTP filtering, is specifically designed for
Exchange Server, Outlook Web Access, and Internet Information Server.
New Extensive protocol support You can use dozens of predefined protocols to integrate ISA Server 2004 with major Internet
applications. ISA Server 2004 enables you to control access to any protocol and usage of any protocol,
including IP-level protocols and IPSec traffic.
Improved Authentication You can authenticate users using built-in Windows, RADIUS, or RSA SecurID authentication types or
mechanisms namespaces, applying rules to users or user groups in any namespace.
Improved Simplified policy model ISA Server 2004 now uses a single ordered rules engine that provides detailed mechanisms for
managing traffic and enforcing policy. Using this rules engine, administrators can control network and
Internet access by user, group, application, content type, schedule, and destination.
Dynamic packet filtering ISA Server 2004 reduces the risk of external attacks by opening ports only when needed.
Improved Smart application filters Data-aware filters that block only certain types of content enable you to control application-specific
traffic, such as e-mail and streaming media.
Improved Updated firewall client The ISA Server 2004 firewall client enables you to integrate authentication, automatic web proxy
configuration, and role-based security using group policies. Other key enhancements include better
connectivity for complex protocols, multi-user account support, and encrypted communications.
Transparency for all clients ISA Server is compatible with clients and application servers on all platforms, including both NAT and
SecureNAT clients, with no client software required.
Improved Publishing ISA Server 2004 enables you to place servers behind the firewall, either on the corporate network or on
a perimeter network, and securely publish their services to the Internet.
Link translation The link translation functionality in ISA Server 2004 allows for intelligent translation of internal links into
publicly accessible sites.
Cache
Improved Cache rules A centralized mechanism for cache policy rules enables you to configure how objects stored in cache
are retrieved and served.
Efficient content You can improve response times and cut bandwidth costs by distributing and caching Web sites and
distribution e-commerce applications locally, so as to bring Web content closer to users.
High-performance Web Web caching provides users with accelerated Web access and saves network bandwidth.
cache
Smart caching You can proactively cache popular objects to ensure the freshest content for each user. You can also
preload the cache with entire Web sites on a defined schedule.
Management
Improved Management New management features make it easier to secure your networks. ISA Server 2004 also offers new
user interface features, such as task panes, help panes, and a new look for the firewall policy editor,
including drag-and-drop capabilities.
New Export and import ISA Server 2004 introduces the ability to export and import configuration information between ISA
Server computers through an XML file, enabling you to easily replicate firewall configurations for multi-
site deployment.
New Dashboard A single view presents a summarized version of key monitoring information. If you note a problem, you
can easily drill down into other monitoring viewers for more information.
New Log viewer A log viewer lets you display the firewall logs in real time—either in an online real-time mode or in a
historic review mode. You can also apply filtering to log fields to identify specific entries.
Improved Built-in reporting You can run scheduled standard reports on Web usage, application usage, network traffic patterns, and
security.
Specifications
additional space required for Web operating system, you must install the
To use Microsoft Internet cache content following: Windows 2000 Service Pack 4
Security and Acceleration • Network adapter that is compatible with or later and Internet Explorer 6 or later.
Server 2004 Standard Edition, the computer's operating system for If you are using the Windows 2000 Server
communication with the internal or Advanced Server release that also
you need: network; one additional network installs Service Pack 4, you must install
• PC with a 550 MHz Pentium III or adapter, modem, or ISDN adapter for the hot fix specified in article 821887 in
higher processor (ISA Server 2004 each additional network connected to the Microsoft Knowledge Base.
Standard Edition supports up to four the ISA Server computer
CPUs on one server) Microsoft recommends that all customers
• CD-ROM or DVD-ROM drive
• Microsoft Windows® 2000 Server or • VGA or higher-resolution monitor
deploy current security implementation
Advanced Server with Service Pack 4 best practices as outlined at
• Keyboard and Microsoft Mouse or
or later, Windows 2000 Datacenter www.microsoft.com/security . Additional
compatible pointing device
Server or Windows Server 2003 hot fixes may be recommended.
Standard Edition or Enterprise Edition Actual system requirements will vary
• 256 MB of RAM or more based on your deployment configuration,
Notes:
(recommended) expected load, and the features you
• NTFS-formatted local partition with 150 If you install ISA Server 2004 Standard choose to install.
MB of available hard-disk space; Edition on a Windows 2000 Server
For more information about Microsoft Internet Security and Acceleration Server 2004, visit http://www.microsoft.com/isaserver .
TO ORDER:
To order Microsoft Internet Security and Acceleration Server 2004 , or to receive a reseller referral in the United States or Canada, call (800) 621-7930, Dept.
A334DS. Outside the United States and Canada, please contact your local Microsoft subsidiary. Customers who are deaf or hard-of-hearing can reach
Microsoft text telephone (TTY/TDD) services by calling (800) 892-5234 in the United States or (905) 568-9641 in Canada.
© 2004 Microsoft Corporation. All rights reserved. This data sheet is f or informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS
SUMMARY.
Microsoft, Active Directory, Outlook, SharePoint, Windows, and Windows Server System are either registered trademarks or trademarks of Microsoft Corporation in the United States
and/or other countries.
The names of actual companies and products mentioned herein may be the trademarks of their respective owners.