- Articles
- Authors
- Blogs
- ISA Server Articles
- Links
- Message Boards
- Newsletter
- RSS
- Security Tests
- Services
- Software
- White Papers
Welcome to Thomas Shinder's Section
Dr. Thomas W. Shinder is an MCSE and MVP in ISA Firewalls. He has worked as a technology trainer, writer and consultant in the Dallas-Ft. Worth metro area for over a decade, assisting in development and implementation of security strategies for major firms such as Micorosoft, HP, the US Federal Government, and many other Fortune 500 companies. Tom is the CIO of TACTEAM, a writing, training and consulting firm focused on Windows security planning and deployment.
Thomas Shinder's Latest Contributions
- The Windows Server 2008 Connection Manager Administration Kit
- Date - May 13, 2008
- Section - Articles / Firewalls & VPNs
- Taking a look at the Windows Server 2008 CMAK and how you can use it to create secure connectoids for PPTP, L2TP and SSTP remote access VPN client connections.
- Configuring the Windows Server 2008 Terminal Services Gateway (Part 2)
- Date - Apr 08, 2008
- Section - Articles / Authentication, Access Control & Encryption
- How to install and configure the TS Gateway and the RDP client; making and testing the connection.
- Configuring the Windows Server 2008 Terminal Services Gateway (Part 1)
- Date - Mar 26, 2008
- Section - Articles / Authentication, Access Control & Encryption
- How to put together a working Terminal Services Gateway solution.
- Configuring Windows Server 2008 as a Remote Access SSL VPN Server (Part 3)
- Date - Feb 14, 2008
- Section - Articles / Authentication, Access Control & Encryption
- We will perform some small configuration changes in the Active Directory and on the CA Web site. Then we will focus on the VPN client configuration and finish up by establishing the SSL VPN connection.
- Configuring Windows Server 2008 as a Remote Access SSL VPN Server (Part 2)
- Date - Jan 30, 2008
- Section - Articles / Authentication, Access Control & Encryption
- The steps required to get a simple three machine SSTP VPN client/server solution to work.
- Configuring Windows Server 2008 as a Remote Access SSL VPN Server (Part 1)
- Date - Jan 08, 2008
- Section - Articles / Authentication, Access Control & Encryption
- A high level overview of VPN networking technologies and a description of Microsoft VPN protocols, highlighting the advantages of the new SSTP VPN protocol.
- Using a Split DNS to Support Small Business Remote Access Connections
- Date - Jul 13, 2004
- Section - Articles / Authentication, Access Control & Encryption
- Small businesses are getting into the remote access market. No, I don’t mean that small businesses are becoming ISPs. What I do mean is that small businesses want to be able to access information stored on machines located on their small business network no matter where they go, in the same way big businesses do it.
- Using Client Certificate Authentication with IIS 6.0 Web Sites
- Date - Jun 24, 2004
- Section - Articles / Web Server Security
- In spite of the fact that there’s no such thing as a secure network, there are still a lot of things you can do that doesn’t require you to take a second mortgage on your home and thousands of man-hours. This is especially true when it comes to providing secure access to Microsoft IIS Web servers.
- Port Scanning ISA Server
- Date - Jul 17, 2002
- Section - Articles / Misc Network Security
- When I wrote my series on how to secure your ISA Server installation, I had it in mind that ISA Server administrators could use the information to confirm whether or not their ISA Server installations we’re secure. We got some good feedback on the series, but you wanted more! Specifically, you wanted to know how you could test (via port scanning tools) what ports and services were visible and available on the external interface of the ISA server.
- Creating a Poor Man’s DMZ Part 1 - Using TCP/IP Security
- Date - Jul 17, 2002
- Section - Articles / Windows Networking
- A common issue that pops up on the www.isaserver.org web boards is how to configure a DMZ segment on a trihomed ISA Server. Setting up a trihomed ISA Server with a directly attached segment acting as a DMZ is fairly simple.
- VPN Client Security Issues
- Date - Jul 17, 2002
- Section - Articles / Firewalls & VPNs
- You've implemented a ISA/VPN Server to allow secure remote connections to your internal network. While you might have configured your VPN Server in a secure manner, what about your VPN clients? In this article I'll talk about important issues regarding VPN client configuration and how it impacts network security.
- Configuring Gateway to Gateway L2TP/IPSec VPNs Part 2: Configuring the Infrastructure
- Date - Jul 17, 2002
- Section - Articles / Firewalls & VPNs
- In part 1 of this series on how to configure an L2TP/IPSec gateway to gateway VPN solution, we examined how to configure the certificate infrastructure and assign machine certificates on the local network. This week, we’ll complete our gateway to gateway VPN configuration.
- Configuring Gateway to Gateway L2TP/IPSec VPNs Part 1: Configuring the Infrastructure
- Date - Jul 17, 2002
- Section - Articles / Firewalls & VPNs
- Configuring a gateway to gateway VPN is easy using ISA Server. The reason why it’s so easy is that the Local and Remote VPN Wizards make the setup a virtual no-brainer. Well, it’s a no-brainer when you’re configuring PPTP VPN gateways. But if you’re in the market for a high security L2TP/IPSec gateway to gateway VPN, you probably have either been trying to avoid it like the plague or you are pulling your hair out trying to figure out how to make it work!
- Securing the ISA Server Configuration - ISA Server Security Checklist (Part 2)
- Date - Jul 17, 2002
- Section - Articles / Firewalls & VPNs
- In part one of our ISA Server Security checklist series, we talked about how to secure the operating system and network interfaces on the ISA Server. In part 2 we'll focus on ISA Server specific configuration issues that you can use to optimize security.
- Securing the Operating System and the Interface
- Date - Jul 17, 2002
- Section - Articles / Windows OS Security
- ISA Server is all about security. ISA is about securing network access into and out of the internal network. But after you’ve done all of your configuring, how do you know that you’ve done an adequate job of securing the internal network and the system that ISA Server is running on?
- Configuring VPN Access in a Back to Back ISA Server Environment
- Date - Jul 16, 2002
- Section - Articles / Firewalls & VPNs
- VPNs have been a topic of growing interest for the last couple years. However, since the tragic events in New York City in September of 2001, the subject has become red-hot. Why? Business and network managers now have a greater awareness that the weakest link in any design, whether it be a network or a business, is too high a level of centralization. Distributed systems are highly fault tolerant and difficult to bring down, while centralized systems can be brought to their knees with a single blow.
- How to Block Dangerous Instant Messengers Using ISA Server
- Date - Jul 16, 2002
- Section - Articles / Authentication, Access Control & Encryption
- I get a lot of questions about how can ISA Server be used to block dangerous applications. What is a dangerous application?
- Configuring ISA Server For Inbound VPN Calls
- Date - Jul 16, 2002
- Section - Articles / Firewalls & VPNs
- You've implemented a ISA/VPN Server to allow secure remote connections to your internal network. While you might have configured your VPN Server in a secure manner, what about your VPN clients? In this article I'll talk about important issues regarding VPN client configuration and how it impacts network security.
Featured Links*
Become a WindowSecurity.com member!
Discuss your security issues with thousands of other network security experts. Click here to join!