Chapter 2. Typical Deployment
scenarios
A typical scenario for deploying ISA Server and most of its services is as follows:
the administrator installs the application on the ISA Server computer, and the ISA
administration tool on a remote computer (as a rule, an administrator’s
workstation).
In this deployment scenario, the Kaspersky Anti-Virus
®
application must be
installed on the ISA Server computer, and the Kaspersky Anti-Virus
®
administration console, on the administrator’s workstation. The computer that
runs the Kaspersky Anti-Virus
®
for ISA Server administration console must only
have the ISA Server administration tools installed.
You can install separate components of Kaspersky Anti-Virus
®
by
manually installing the application (see Chapter 3 on page 11).
During the installation procedure, the program will automatically detect the ISA
Server mode. Below, we consider possible ISA Server modes and any special
features of Kaspersky Anti-Virus
®
operation for each of these modes.
The documentation for ISA Server describes three possible modes:
•
Firewall.
•
Proxy (Cache).
•
Integrated.
In
Firewall
mode, ISA Server protects internal network communications from
various types of Internet-borne threats by using various tools, such as IP packet
filters, Web filters, and application filters. In this mode, caching of transmitted
information is disabled.
In
Proxy (Cache)
mode, ISA Server acts as a cache server that routes requests
and plans data loading for efficient processing of subsequent clients’ requests. In
this mode, ISA Server does not function as a firewall.
In
Integrated
mode, all the features of the firewall and cache server are
available. In addition, in this mode, you can set ISA Server to operate separately
in the
Proxy
or
Firewall
modes.
During the installation of Kaspersky Anti-Virus
®
, the mode in which ISA Server
operates is determined automatically. Depending on the mode, various sets of
data stream filters are installed.