Tìm hiểu ISA 2006 và cách cài đặt - dongquangphuong PDF

11/07/2015
Tm hiu ISA 2006 v cch ci t | dongquangphuong
dongquangphuong
THNG628 2
013
Tm hiu ISA 2006 v cch ci t

Cc c im ca Microsoft ISA 2006:
Cungc
pt
nhnngMul
t
i
ne
t
wor
ki
ng:
Kt
hu
tt
hi
tl
pc
cc
h
nhs
c
ht
r
uyc
pdat
r
n
ac
h
m
ng,
t
hi
tl
pf
i
r
e
wa
l
ll
ct
hngt
i
ndat
r
nt
ng
ac
h
mngc
on,
Uni
quepe
r
ne
t
wor
kpol
i
c
i
e
s
:ci
m Mul
t
i
ne
t
wo
r
ki
ngcc
ungc
pt
r
ongI
SASe
r
v
e
rc
hoph
p
b
ovht
h
ngm
ngnibb
ngc
c
hgi
ih
nt
r
uyxu
tc
ac
cCl
i
e
ntb
nngo
i
i
nt
e
r
ne
t
,
bng
c
c
ht
or
amtvngmngngoiv
ipe
r
i
me
t
e
rne
t
wo
r
k(
cx
e
ml
v
ngDMZ,
de
mi
l
i
t
a
r
i
z
e
dzone
,
ho
cs
c
r
e
e
ne
ds
ubne
t
)
,
c
hc
hoph
pCl
i
e
ntb
nngo
i
t
r
uyxu
tv
oc
cSe
r
v
e
rt
r
nm
ngngo
ivi
,
kh
ngc
hoph
pCl
i
e
ntb
nngo
it
r
uyxu
tt
r
ct
i
pv
omngni
b.
St
a
t
e
f
uli
ns
pe
c
t
i
onofal
lt
r
af
f
i
c
:
Choph
pgi
ms
tt
tc
c
cl
ul
ngm
ng.
NATa
ndr
o
ut
ene
t
wor
kr
e
l
at
i
ons
hi
ps
:Cungc
pkt
hu
tNATv
nht
uy
ndl
i
uc
homngc
o
n.
Ne
t
wo
r
kt
e
mpl
at
e
s
:
Cungc
pc
cmh
nhmu(
ne
t
wo
r
kt
e
mpl
a
t
e
s
)v
m
ts
ki
nt
r
cmng,k
m
t
he
om
ts
l
utc
nt
hi
tc
hone
t
wor
kt
e
mpl
at
e
st
ngng.
Cungc
pmts
ci
m mi
t
hi
tl
pm
ngr
i
ngo(
VPN ne
t
wo
r
k)v
t
r
uyc
pt
x
ac
ho
do
a
nhnghi
pnhgi
m s
t
,ghi
nh
nl
og,
qu
nl
s
e
s
s
i
onc
hot
ngVPN Se
r
v
e
r
,
t
hi
tl
pa
c
c
e
s
spol
i
c
y
c
hot
ngVPN Cl
i
e
nt
,c
ungc
pt
nhnngt
ngt
h
c
hv
i
VPN t
r
nc
cht
h
ngkh
c
.
-Cungc
pmt
s
kt
hutbom
t
(
s
e
c
ur
i
t
y)vt
hi
tl
pFi
r
e
wal
lc
hoht
hngnhAut
he
nt
i
c
a
t
i
on,
Publ
i
s
hSe
r
ve
r
,
gi
i
hnmts
t
r
a
f
f
i
c
.
Cungc
pmts
kt
hutc
ac
het
h
ngmi
nh(
We
bc
a
c
he
)l
mt
ngt
c
t
r
uyxu
tmng,gi
m
t
i
c
hongt
r
uy
n,
We
bpr
ox
yc
hi
as
t
r
uyx
utWe
b.
Cungc
pmts
t
nhnngqunl
hi
uqunh:
gi
m s
tl
ul
ng,
r
e
po
r
t
i
ngquaWe
b,e
xpor
tv
i
mpo
r
tc
uh
nht
XMLc
onf
i
gur
at
i
onf
i
l
e
,qu
nl
l
i
ht
h
ngt
h
ngquakt
hutgi
t
hngboqua
Emai
l
,
.
.
Appl
i
c
a
t
i
o
nLaye
rFi
l
t
e
r
i
ng(
ALF)
:l
m
tt
r
ongnhngi
m m
nhc
aI
SASe
r
ve
r20
0
6,
kh
nggi
ng
nhpac
ke
tf
i
l
t
e
r
i
ngf
i
r
e
wal
l
t
r
uy
nt
h
ng,
I
SA2
00
6c
t
ht
ha
ot
cs
uhnnhc
t
hl
ccc
c
t
h
ngt
i
nt
r
ongt
ngngdng.
M
ts
ci
m nib
cc
aALF:
Choph
pt
hi
tl
pbl
cHTTPi
nbo
undv
o
ut
bo
undHTTP.
Chncc
cc
c
cl
o
it
pt
i
nt
hct
hi
c
h
yt
r
nn
nWi
ndo
wsnh.
pi
f
,
.
c
o
m,
Ct
hgi
i
hnHTTPdownl
oad.
Ct
hgi
i
hnt
r
uyxu
tWe
bc
hot
tc
c
cCl
i
e
ntdat
r
nn
idungt
r
uyc
p.
https://dongquangphuong.wordpress.com/2013/06/28/360/
1/133
11/07/2015
Ct
hi
uki
nt
r
uyxutHTTPdat
r
nc
hk(
s
i
gna
t
ur
e
)
.
A M HNH
B- GII THIU
Khi
k
tn
i
ht
hngmngnibgi
aod
c
hv
iI
nt
e
r
ne
t,
c
cCngt
yt
hngc
y
uc
unh:
Ki
ms
o
tc
cgi
aod
c
ht
hchi
ngi
amngn
ibv
I
nt
e
r
ne
t
Ng
nc
hnc
ct
nc
ng,t
h
m nh
pt
r
iph
pt
I
nt
e
r
ne
t
Gi
i
ph
pt
h
c
hhpc
hoc
cnhuc
ut
r
nl
s
dngc
cFi
r
e
wa
l
l
(
bct
ngl
a
)
.
B
i
n
ygi
it
hi
uvi
cc
itvt
r
i
nkha
i
phnm
m Fi
r
e
wal
lc
aMi
c
r
o
s
of
t
:
Internet Security and Acceleration 2006 (ISA-2K6)
C-
CC BC TRIN KHAI
Ph
tt
r
i
nt
ht
hngDoma
i
nc
abiHt
hngDo
ma
i
nNe
t
wo
r
knhi
uNe
t
wo
r
k,b
inys
dng
t
h
m 1m
yt
nh
cl
p,
dngWi
ndo
wsSe
r
ve
r20
0
3t
r
i
nkhai
I
SA2K6
2/133
11/07/2015
C
cbct
r
i
nkhaiba
ogm :
C
uh
nht
hngs
TCP/
I
Pvc
itI
SA2
K6
C
uh
nhc
cI
SACl
i
e
nt
st
r
o
ngm
ngn
i
b
Khai
bot
r
nI
SA2
K6c
ct
hnhphnt
r
ongm
ngni
bnh:
VI
P,
USER,
SERVER
Thi
tl
pc
cAc
c
e
s
sRul
e
s
,Appl
i
c
a
t
i
onFi
l
e
rt
r
nI
SA2
K6ki
ms
o
tc
cgi
a
od
c
h
C
uh
nhI
SA2K6nh
nbi
tv
ng
nc
h
nc
ct
nc
ngt
b
nngo
i
I
nt
e
r
ne
t
Thchi
nt
hngk
,boc
ov
c
cgi
a
od
c
ht
h
ngquaI
SA2K6
D- TRIN KHAI CHI TIT
I. Chun b:
B
i
g
m 5PC:
Se
r
v
e
r
,
VI
P,
Us
e
r
s
,
Rout
e
rvI
SA
1. Nng cp Domain Controller trn my Server
B1.
tI
PAddr
e
s
s
Interface Name
Lan-3
IP Address
1
92.
168.
3.
2
Subnet Mark
255
.
2
5
5.
2
5
5.
0
Default Gateway
Preferred DNS
1
92
.
1
68
.
3
.
1
1
92
.
1
6
8.
3.
2
Default Gateway
Preferred DNS
Tr
ng
Tr
ng
B2.
St
a
r
t
Run:
DCPROMO
Do
mai
nName
:
nhatnghe.local
2. Cu hnh Routing trn my Router
B1.
tI
PAddr
e
s
sc
hoc
cI
nt
e
r
f
a
c
e
Interface Name
Cross
IP Address
1
92.
168.
5.
2
Subnet Mark
255
.
2
5
5.
2
5
5.
0
3/133
11/07/2015
Lan-2
1
92.
168.
2.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
Lan-3
1
92.
168.
3.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
Lan-4
1
92.
168.
4.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
B2.
Enabl
eLanRout
i
ng
St
a
r
t
Pr
ogr
ams
Admi
ni
s
t
r
a
t
i
veToo
l
s
Ro
ut
i
nga
ndRe
mo
t
eAc
c
e
s
s
B3.
ToSt
at
i
cRout
e
4/133
11/07/2015
5/133
11/07/2015
3. Join domain cc my VIP,USERS vo nhatnghe.local

B1: I
PAddr
e
s
s
PC
IP Address
Subnet Mark
Default Gateway
Preferred DNS
VIP
1
92.
168.
2.
2
255
.
2
5
5.
2
5
5.
0
1
92
.
1
68
.
2
.
1
1
92
.
1
6
8.
3.
2
Users
1
92.
168.
4.
2
255
.
2
5
5.
2
5
5.
0
1
92
.
1
68
.
4
.
1
1
92
.
1
6
8.
3.
2
B2:
MyComput
e
r
Pr
ope
r
t
i
e
s
Ta
bCo
mput
e
rNa
me
Cl
i
c
kChange
Me
mbe
rOfDomai
n:nhatnghe.local
II. Ci t ISA Server 2006 trn my ISA

1.Cu hnh Route trn my ISA
B1:
tI
PAddr
e
s
s
Interface Name
IP Address
Subnet Mark
Default Gateway
Preferred DNS
6/133
11/07/2015
Cross
1
92.
168.
5.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
1
92
.
1
6
8.
3.
2
Lan
1
92.
168.
1.
2
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
B2.:
T
oc
cr
o
ut
e:
St
ar
t
\Run:
CMD.
*Nhpc
cl
nht
or
out
es
au:
Route add p 192.168.2.0 mask 255.255.255.0 192.168.5.2 metric 1
*x
e
m Ro
ut
i
ngTabl
e
,nh
pl
nh:
Route print
7/133
11/07/2015
2.Ci t ISA Server

TSour
c
eI
SA20
06c
hyf
i
l
e
:
I
SAAut
or
un.
e
x
e
8/133
11/07/2015
9/133
11/07/2015
10/133
11/07/2015
11/133
11/07/2015
12/133
11/07/2015
13/133
11/07/2015
14/133
11/07/2015
15/133
11/07/2015
3.Ci t Firewall client trn ccmy SERVER,VIP,USERS

Ts
our
c
eI
SA20
06Cl
i
e
nt
Chyf
i
l
e
:I
SACi
e
nt
.
e
x
e
16/133
11/07/2015
17/133
11/07/2015
18/133
11/07/2015
19/133
11/07/2015
III.Cu hnh Access Rules

1.Cho phn gii tn min DNS
20/133
11/07/2015
21/133
11/07/2015
22/133
11/07/2015
23/133
11/07/2015
24/133
11/07/2015
25/133
11/07/2015
2. Cho PC VIP v Users c gi nhn mail t internet

B1.
nhngh
aVI
P,
Us
e
r
s
26/133
11/07/2015
27/133
11/07/2015
B2.ToAc
c
e
s
sr
ul
e
28/133
11/07/2015
29/133
11/07/2015
30/133
11/07/2015
3. Cho PC Users oc truy cp trang nhatnghe.com trong gi lm vic

(
8
hAM4
hPM t
Th2
nTh6)
B1.
nhngh
aTr
angnhat
nghe
.
c
om
31/133
11/07/2015
32/133
11/07/2015
B2.
nhngh
aGi
l
m vi
B3.
ToAc
c
e
s
sRul
e
33/133
11/07/2015
34/133
11/07/2015
35/133
11/07/2015
36/133
11/07/2015
37/133
11/07/2015
38/133
11/07/2015
4. Cho PC VIP truy cp internet khng hn ch.
39/133
11/07/2015
40/133
11/07/2015
41/133
11/07/2015
42/133
11/07/2015
43/133
11/07/2015
44/133
11/07/2015
5. Cho Users truy cp internet khng hn ch trong gi gii lao

(
1
0
hAM2
hPM)
B1.
nhngh
aGi
gi
il
ao
45/133
11/07/2015
B2. T
oAc
c
e
s
sRul
e
46/133
11/07/2015
47/133
11/07/2015
48/133
11/07/2015
49/133
11/07/2015
50/133
11/07/2015
B3. Pr
ope
r
t
i
e
sRul
eGi
ogi
ai
l
a
o
51/133
11/07/2015
52/133
11/07/2015
6. Ch cho Users c ch, khng cho xem hnh,xem phim,nghe nhc
53/133
11/07/2015
54/133
11/07/2015
7. Cm tt c users truy cp trang ngoisao.net,

nu users truy cp trang ny th redirect v trang nhatnghe.com.
B1.
nhngh
aURL
ngo
i
s
ao
.
ne
t
To
o
l
box
Ne
t
wor
kObj
e
c
t
Ne
wURLSe
t
B2.ToAc
c
e
s
sRul
e
55/133
11/07/2015
56/133
11/07/2015
57/133
11/07/2015
58/133
11/07/2015
59/133
11/07/2015
60/133
11/07/2015
B3.
Pr
ope
r
t
i
e
sRul
e
Cam Ngo
i
s
a
o.
ne
t
61/133
11/07/2015
62/133
11/07/2015
63/133
11/07/2015
IV.Cu hnh HTTP Filter

Nh
mc
m us
e
rc
ha
tYM,
c
m gima
i
l
b
ngphngt
hcPOST,
c
m downl
oadf
i
l
ee
x
e
,
vbs
64/133
11/07/2015
65/133
11/07/2015
66/133
11/07/2015
67/133
11/07/2015
V.Cu hnh Intrusion Detection

nhnbi
tv
ng
nc
hnc
ct
nc
ngt
b
nngo
i
I
nt
e
r
ne
t
B1.
Enabl
eI
nt
r
us
i
onDe
t
e
c
t
i
on
68/133
11/07/2015
69/133
11/07/2015
B2:Thi
tl
pAc
t
i
on
70/133
11/07/2015
71/133
11/07/2015
VI.Report
Thchi
nt
hngk
,
boc
ov
c
cgi
aod
c
ht
h
ngquaI
SA2K6
Ch
nMo
ni
t
o
r
i
ngTa
bRe
por
t
s
Cl
i
c
kGe
ne
r
a
t
eaNe
wRe
po
r
t
72/133
11/07/2015
73/133
11/07/2015
74/133
11/07/2015
75/133
11/07/2015
76/133
11/07/2015
No
r
mal
0
f
a
l
s
e
f
a
l
s
e
f
a
l
s
e
f
a
l
s
e
ENUS
XNONE
XNONE
Mi
c
r
os
o
f
t
I
nt
e
r
ne
t
Expl
or
e
r
4
/
*St
yl
eDe
f
i
ni
t
i
o
ns*
/
t
a
bl
e
.
Ms
o
No
r
mal
Tabl
e
{
ms
o
s
t
yl
e
name
:
Tabl
eNor
mal
;
ms
o
t
s
t
yl
e
r
owbands
i
z
e
:
0;
ms
o
t
s
t
yl
e
c
ol
bands
i
ze
:
0;
ms
o
s
t
yl
e
nos
how:
ye
s
;
ms
o
s
t
yl
e
pr
i
o
r
i
t
y:
99
;
ms
o
s
t
yl
e
qf
or
mat
:
ye
s
;
ms
o
s
t
yl
e
par
e
nt
:
;
ms
o
paddi
ngal
t
:
0i
n5
.
4pt0i
n5.
4pt
;
ms
o
par
a
mar
gi
nt
o
p:
0
i
n;
ms
o
par
a
mar
gi
nr
i
ght
:
0
i
n;
ms
o
par
a
mar
gi
nbot
t
om:
10.
0pt
;
ms
o
par
a
mar
gi
nl
e
f
t
:
0i
n;
l
i
ne
he
i
ght
:
1
15%;
ms
o
pagi
nat
i
on:
wi
do
wor
phan;
77/133
11/07/2015
f
o
nt
s
i
ze
:
1
1.
0pt
;
f
o
nt
f
a
mi
l
y:
Cal
i
br
i
,
s
ans
s
e
r
i
f
;
ms
o
a
s
c
i
i
f
ont
f
ami
l
y:
Cal
i
br
i
;
ms
o
a
s
c
i
i
t
he
me
f
ont
:
mi
nor
l
at
i
n;
ms
o
f
ar
e
a
s
t
f
o
nt
f
a
mi
l
y:
Ti
me
sNe
wRo
man
;
ms
o
f
ar
e
a
s
t
t
he
me
f
o
nt
:
mi
nor
f
ar
e
as
t
;
ms
o
hans
i
f
o
nt
f
ami
l
y:
Cal
i
br
i
;
ms
o
hans
i
t
he
me
f
o
nt
:
mi
nor
l
a
t
i
n;
}
B- GII THIU
Khi
k
tn
i
ht
hngmngnibgi
aod
c
hv
iI
nt
e
r
ne
t,
c
cCngt
yt
hngc
y
uc
unh:
Ki
ms
o
tc
cgi
aod
c
ht
hchi
ngi
amngn
ibv
I
nt
e
r
ne
t
Ng
nc
hnc
ct
nc
ng,t
h
m nh
pt
r
iph
pt
I
nt
e
r
ne
t
Gi
i
ph
pt
h
c
hhpc
hoc
cnhuc
ut
r
nl
s
dngc
cFi
r
e
wa
l
l
(
bct
ngl
a
)
.
B
i
n
ygi
it
hi
uvi
cc
itvt
r
i
nkha
i
phnm
m Fi
r
e
wal
lc
aMi
c
r
o
s
of
t
:
Internet Security and Acceleration 2006 (ISA-2K6)
C-
CC BC TRIN KHAI
Ph
tt
r
i
nt
ht
hngDoma
i
nc
abiHt
hngDo
ma
i
nNe
t
wo
r
knhi
uNe
t
wo
r
k,b
inys
dng
t
h
m 1m
yt
nh
cl
p,
dngWi
ndo
wsSe
r
ve
r20
0
3t
r
i
nkhai
I
SA2K6
C
cbct
r
i
nkhaiba
ogm :
C
uh
nht
hngs
TCP/
I
Pvc
itI
SA2
K6
C
uh
nhc
cI
SACl
i
e
nt
st
r
o
ngm
ngn
i
b
Khai
bot
r
nI
SA2
K6c
ct
hnhphnt
r
ongm
ngni
bnh:
VI
P,
USER,
SERVER
Thi
tl
pc
cAc
c
e
s
sRul
e
s
,Appl
i
c
a
t
i
onFi
l
e
rt
r
nI
SA2
K6ki
ms
o
tc
cgi
a
od
c
h
C
uh
nhI
SA2K6nh
nbi
tv
ng
nc
h
nc
ct
nc
ngt
b
nngo
i
I
nt
e
r
ne
t
Thchi
nt
hngk
,boc
ov
c
cgi
a
od
c
ht
h
ngquaI
SA2K6
D- TRIN KHAI CHI TIT
I. Chun b:
B
i
g
m 5PC:
Se
r
v
e
r
,
VI
P,
Us
e
r
s
,
Rout
e
rvI
SA
1. Nng cp Domain Controller trn my Server
78/133
11/07/2015
B1.
tI
PAddr
e
s
s
Interface Name
Lan-3
IP Address
1
92.
168.
3.
2
Subnet Mark
255
.
2
5
5.
2
5
5.
0
Default Gateway
Preferred DNS
1
92
.
1
68
.
3
.
1
1
92
.
1
6
8.
3.
2
Default Gateway
Preferred DNS
B2.
St
a
r
t
Run:
DCPROMO
Do
mai
nName
:
nhatnghe.local
2. Cu hnh Routing trn my Router
B1.
tI
PAddr
e
s
sc
hoc
cI
nt
e
r
f
a
c
e
Interface Name
IP Address
Subnet Mark
Cross
1
92.
168.
5.
2
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
Lan-2
1
92.
168.
2.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
Lan-3
1
92.
168.
3.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
Lan-4
1
92.
168.
4.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
B2.
Enabl
eLanRout
i
ng
St
a
r
t
Pr
ogr
ams
Admi
ni
s
t
r
a
t
i
veToo
l
s
Ro
ut
i
nga
ndRe
mo
t
eAc
c
e
s
s
79/133
11/07/2015
B3.
ToSt
at
i
cRout
e
80/133
11/07/2015
3. Join domain cc my VIP,USERS vo nhatnghe.local

B1: I
PAddr
e
s
s
PC
IP Address
Subnet Mark
Default Gateway
Preferred DNS
VIP
1
92.
168.
2.
2
255
.
2
5
5.
2
5
5.
0
1
92
.
1
68
.
2
.
1
1
92
.
1
6
8.
3.
2
Users
1
92.
168.
4.
2
255
.
2
5
5.
2
5
5.
0
1
92
.
1
68
.
4
.
1
1
92
.
1
6
8.
3.
2
B2:
MyComput
e
r
Pr
ope
r
t
i
e
s
Ta
bCo
mput
e
rNa
me
Cl
i
c
kChange
Me
mbe
rOfDomai
n:nhatnghe.local
II. Ci t ISA Server 2006 trn my ISA
81/133
11/07/2015
1.Cu hnh Route trn my ISA

B1:
tI
PAddr
e
s
s
Interface Name
IP Address
Subnet Mark
Default Gateway
Preferred DNS
Cross
1
92.
168.
5.
1
255
.
2
5
5.
2
5
5.
0
Tr
ng
1
92
.
1
6
8.
3.
2
Lan
1
92.
168.
1.
2
255
.
2
5
5.
2
5
5.
0
Tr
ng
Tr
ng
B2.:
T
oc
cr
o
ut
e:
St
ar
t
\Run:
CMD.
*Nhpc
cl
nht
or
out
es
au:
*x
e
m Ro
ut
i
ngTabl
e
,nh
pl
nh:
Route print
2.Ci t ISA Server

TSour
c
eI
SA20
06c
hyf
i
l
e
:
I
SAAut
or
un.
e
x
e
82/133
11/07/2015
83/133
11/07/2015
84/133
11/07/2015
85/133
11/07/2015
86/133
11/07/2015
87/133
11/07/2015
3.Ci t Firewall client trn ccmy SERVER,VIP,USERS

Ts
our
c
eI
SA20
06Cl
i
e
nt
Chyf
i
l
e
:I
SACi
e
nt
.
e
x
e
88/133
11/07/2015
89/133
11/07/2015
III.Cu hnh Access Rules

1.Cho phn gii tn min DNS
90/133
11/07/2015
91/133
11/07/2015
92/133
11/07/2015
93/133
11/07/2015
94/133
11/07/2015
2. Cho PC VIP v Users c gi nhn mail t internet

B1.
nhngh
aVI
P,
Us
e
r
s
95/133
11/07/2015
B2.ToAc
c
e
s
sr
ul
e
96/133
11/07/2015
97/133
11/07/2015
3. Cho PC Users oc truy cp trang nhatnghe.com trong gi lm vic

(
8
hAM4
hPM t
Th2
nTh6)
B1.
nhngh
aTr
angnhat
nghe
.
c
om
98/133
11/07/2015
B2.
nhngh
aGi
l
m vi
B3.
ToAc
c
e
s
sRul
e
99/133
11/07/2015
100/133
11/07/2015
101/133
11/07/2015
102/133
11/07/2015
103/133
11/07/2015
4. Cho PC VIP truy cp internet khng hn ch.
104/133
11/07/2015
105/133
11/07/2015
106/133
11/07/2015
107/133
11/07/2015
108/133
11/07/2015
5. Cho Users truy cp internet khng hn ch trong gi gii lao

(
1
0
hAM2
hPM)
B1.
nhngh
aGi
gi
il
ao
B2. T
oAc
c
e
s
sRul
e
109/133
11/07/2015
110/133
11/07/2015
111/133
11/07/2015
112/133
11/07/2015
B3. Pr
ope
r
t
i
e
sRul
eGi
ogi
ai
l
a
o
113/133
11/07/2015
114/133
11/07/2015
6. Ch cho Users c ch, khng cho xem hnh,xem phim,nghe nhc
115/133
11/07/2015
7. Cm tt c users truy cp trang ngoisao.net,

nu users truy cp trang ny th redirect v trang nhatnghe.com.
B1.
nhngh
aURL
ngo
i
s
ao
.
ne
t
To
o
l
box
Ne
t
wor
kObj
e
c
t
Ne
wURLSe
t
116/133
11/07/2015
B2.ToAc
c
e
s
sRul
e
117/133
11/07/2015
118/133
11/07/2015
119/133
11/07/2015
120/133
11/07/2015
B3.
Pr
ope
r
t
i
e
sRul
e
Cam Ngo
i
s
a
o.
ne
t
121/133
11/07/2015
IV.Cu hnh HTTP Filter

Nh
mc
m us
e
rc
ha
tYM,
c
m gima
i
l
b
ngphngt
hcPOST,
122/133
11/07/2015
c
m downl
oadf
i
l
ee
x
e
,
vbs
123/133
11/07/2015
124/133
11/07/2015
125/133
11/07/2015
V.Cu hnh Intrusion Detection

nhnbi
tv
ng
nc
hnc
ct
nc
ngt
b
nngo
i
I
nt
e
r
ne
t
B1.
Enabl
eI
nt
r
us
i
onDe
t
e
c
t
i
on
126/133
11/07/2015
B2:Thi
tl
pAc
t
i
on
127/133
11/07/2015
VI.Report
128/133
11/07/2015
Thchi
nt
hngk
,
boc
ov
c
cgi
aod
c
ht
h
ngquaI
SA2K6
Ch
nMo
ni
t
o
r
i
ngTa
bRe
por
t
s
Cl
i
c
kGe
ne
r
a
t
eaNe
wRe
po
r
t
129/133
11/07/2015
130/133
11/07/2015
131/133
11/07/2015
Bydongqua
ngphuo
ngPos
t
e
di
nI
T,
Wi
ndowsTagge
dI
SA2
0
06
Tom
twe
bs
i
t
emi
nphho
c1bl
ogv
iWor
dPr
e
s
s
.
c
om.|Thei
The
me
2The
me
.
The
odi
Follow dongquangphuong
132/133
11/07/2015
Bui
l
dawe
bs
i
t
ewi
t
hWo
r
dPr
e
s
s
.
c
o
m
133/133

Tìm hiểu ISA 2006 và cách cài đặt - dongquangphuong PDF

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Tìm hiểu ISA 2006 và cách cài đặt - dongquangphuong PDF

Uploaded by

Copyright:

Available Formats

11/07/2015

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

D- TRIN KHAI CHI TIT

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

3. Join domain cc my VIP,USERS vo nhatnghe.local

II. Ci t ISA Server 2006 trn my ISA

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

2.Ci t ISA Server

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

3.Ci t Firewall client trn ccmy SERVER,VIP,USERS

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

III.Cu hnh Access Rules

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

2. Cho PC VIP v Users c gi nhn mail t internet

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

3. Cho PC Users oc truy cp trang nhatnghe.com trong gi lm vic

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

4. Cho PC VIP truy cp internet khng hn ch.

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

5. Cho Users truy cp internet khng hn ch trong gi gii lao

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong

Tm hiu ISA 2006 v cch ci t | dongquangphuong