RE: MS Proxy Server

Chris Bryant Sun, 5 Mar 2000 21:24:33 -0800
MS Proxy 2 is fairly easy to get working in a very functional sense. But you
should make sure to secure the NT box it runs on as much as possible.
Install at least SP 5 and the security related post SP5 hotfixes. Get the
latest Proxy patch. Unbind all unnecessary services from the external NIC.
Disable IP forwarding (it sometimes is mysteriously enabled.) The MS Proxy
website (sorry, I don't have the URL handy) has a checklist of steps in
securing an NT box for use with Proxy and IIS. And, also, make sure to
enable logging and check the logs so you get a familiarity with what types
of traffic gets passed through the winsock and the www services. Hope this
helps.

cb 

        -----Original Message-----
        From:   Doug Skrivan [SMTP:[EMAIL PROTECTED]]
        Sent:   Sunday, March 05, 2000 1:04 PM
        Cc:     [EMAIL PROTECTED]
        Subject:        RE: MS Proxy Server

        As long as you don't enable packet filtering you should be fine.  I
        recommend that you don't enable packet filtering at first until you
get MS
        Proxy 2 working, once working then you can enable packet filtering.
FYI, MS
        Proxy requires that you IIS installed, it uses  that same MMC and
        authentication from IIS. I only found 1 application that didn't make
it
        through the proxy and it was UDP and the programmer didn't seem to
        understand proxy.  (It didn't work on any brand of proxy)

        Good Luck
        Doug Skrivan


        -----Original Message-----
        From: [EMAIL PROTECTED]
        [mailto:[EMAIL PROTECTED]]On Behalf Of Bernd Eckenfels
        Sent: Sunday, March 05, 2000 12:39 PM
        To: [EMAIL PROTECTED]
        Cc: [EMAIL PROTECTED]
        Subject: Re: MS Proxy Server


        On Sun, Mar 05, 2000 at 11:54:29AM -0500, [EMAIL PROTECTED]
wrote:
        > This is a temporary test environment so we don't need anything too
        complex.
        If you do not use any software distribution system yet, then simply
put the
        proxy client on a share on the proxy server und run setup on all of
hose
        systems by hand. Its the easisest solution compared to installing
some
        system management tool.

        Greetings
        Bernd
        --
          (OO)      -- [EMAIL PROTECTED]
--
         ( .. )  ecki@{inka.de,linux.de,debian.org}
http://home.pages.de/~eckes/
          o--o     *plush*  2048/93600EFD  eckes@irc  +497257930613
BE5-RIPE
        (O____O)  When cryptography is outlawed, bayl bhgynjf jvyy unir
cevinpl!
        -
        [To unsubscribe, send mail to [EMAIL PROTECTED] with
        "unsubscribe firewalls" in the body of the message.]

        -
        [To unsubscribe, send mail to [EMAIL PROTECTED] with
        "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
RE: MS Proxy Server

Reply via email to
