hey all,

i currently have my home domain behind an ISA server (bastion host) but it is just too much of a pain in the arse.

i am going to switch all the clients over to zonealarm, but when i ran the install on my domain controler, it said it doesnt support win2k3 and reccomend i not install.

has anybody igonred this message and had good results..or can anyone reccomend s/w that will protect servers!!

t.i.a!!

arggh...r u guyz gonna make me be the labrat on my DC?!?!?

surely some one here has a domain protected by a firewall (that aint isa!!)

I recomend you do a network level firewall.

Software firewalls can wreak havoc on server systems.

Personally, I use a BSD server that collects routing tables and firewall rules as a router. I actually have a dedicated machine on one of my networks with 7 NICs that actually runs subnets as well as firewalls very well with over 500 client computers.

BSD sounds like it functions in much the same way as ISA. i have no problem with that OTHER than having the clients machines at home (thats where this is) is a nightmare on my family. they all want to use p2p proggys, and none of the summport proxys.

Ahhh, I got the impression that you were running a company network. In your case I would recomend using a router or computer/router that employs NAT. Configuring NAT on like BSD router isn't hard, but Linksys routers work out of the box.

isa is web cache / firewall that uses NAT

as i have researched the problem further, it seems that the its the p2p client at fault (not isa). i have been told that you can get limewire to work behind this type of setup (although their site says no web firewall or socks firewall)..so im gonna give that a try.

i will post back my results....thanx for your input!! :)