Microsoft Learning:

Exam 70-227:

Installing, Configuring, and Administering Microsoft Internet Security and Acceleration (ISA) Server 2000, Enterprise Edition

Published:February 27, 2001
Language(s):English
Audience(s):IT Professionals
Technology:Microsoft Internet Security and Acceleration Server
Type:Proctored Exam
Audience Profile
Candidates for this exam operate in medium-sized to very large computing environments that use the Microsoft Windows 2000 Server operating system. Candidates have a basic understanding of DNS, FTP, HTTP, HTTPS, IMAP, POP3, RDP, SMTP, and SSL. They have a minimum of one year of experience in implementing and administering network operating systems in environments that have the following characteristics:
  • From 200 to more than 26,000 supported users.
  • Multiple physical locations.
  • Outbound access for typical client services and applications, such as Web access, e-mail, Telnet, FTP, virtual private networking (VPN), desktop management, Instant Messaging, and access control policies.
  • Hosting of network services, such as internal and external Web hosting, messaging, Instant Messaging, RDP, and firewall.
  • Connectivity requirements that include connecting individual offices and users at remote locations to the corporate network and connecting corporate networks to the Internet.
  • ISA Server computers that are configured to use chaining.
Credit Toward CertificationWhen you pass Exam 70-227: Installing, Configuring, and Administering Microsoft Internet Security and Acceleration (ISA) Server 2000, Enterprise Edition, you complete the requirements for the following certification(s):Exam 70-227: Installing, Configuring, and Administering Microsoft Internet Security and Acceleration (ISA) Server 2000, Enterprise Edition: counts as credit toward the following certification(s):
Note This preparation guide is subject to change at any time without prior notice and at the sole discretion of Microsoft. Microsoft exams might include adaptive testing technology and simulation items. Microsoft does not identify the format in which exams are presented. Please use this preparation guide to prepare for the exam, regardless of its format.
Skills Being MeasuredThis exam measures your ability to accomplish the technical tasks listed below.The percentages indicate the relative weight of each major topic area on the exam.
Installing ISA Server
  • Preconfigure network interfaces.
    • Verify Internet connectivity before installing ISA Server.
    • Verify DNS name resolution.
  • Install ISA Server. Installation modes include integrated, firewall, and cache.
    • Construct and modify the local address table (LAT).
    • Calculate the size of the cache and configure it.
    • Install an ISA Server computer as a member of an array.
  • Upgrade a Microsoft Proxy Server 2.0 computer to ISA Server.
    • Back up the Proxy Server 2.0 configuration.
  • Troubleshoot problems that occur during setup.
Configuring and Troubleshooting ISA Server Services
  • Configure and troubleshoot outbound Internet access.
  • Configure ISA Server hosting roles.
    • Configure ISA Server for Web publishing.
    • Configure ISA Server for SSL.
    • Configure ISA Server for server publishing.
  • Configure H.323 Gatekeeper for audio and video conferencing.
    • Configure gatekeeper rules. Rules include telephone, e-mail, and Internet Protocol (IP).
    • Configure gatekeeper destinations by using the Add Destination Wizard.
  • Set up and troubleshoot dial-up connections and Routing and Remote Access dial-on-demand connections.
    • Set up and verify routing rules for static IP routes in Routing and Remote Access.
  • Configure and troubleshoot virtual private network (VPN) access.
    • Configure the ISA Server computer as a VPN endpoint without using the VPN Wizard.
    • Configure the ISA Server computer for VPN pass-through.
  • Configure multiple ISA Server computers for scalability. Configurations include Network Load Balancing (NLB) and Cache Array Routing Protocol (CARP).
Configuring, Managing, and Troubleshooting Policies and Rules
  • Configure the firewall in accordance with corporate standards.
    • Configure the packet filter rules for different levels of security, including system hardening.
  • Create and configure access control and bandwidth policies.
    • Create and configure site and content rules to restrict Internet access.
    • Create and configure protocol rules to manage Internet access.
    • Create and configure routing rules to restrict Internet access.
    • Create and configure bandwidth rules to control bandwidth usage.
  • Troubleshoot access problems.
    • Troubleshoot user-based access problems.
    • Troubleshoot packet-based access problems.
  • Create new policy elements. Elements include schedules, bandwidth priorities, destination sets, client address sets, protocol definitions, and content groups.
  • Manage ISA Server arrays in an enterprise.
    • Create an array of proxy servers.
    • Assign an enterprise policy to an array.
Deploying, Configuring, and Troubleshooting the Client Computer
  • Plan the deployment of client computers to use ISA Server services. Considerations include client authentication, client operating system, network topology, cost, complexity, and client function.
  • Configure and troubleshoot the client computer for security-enhanced network address translation (SecureNAT).
  • Install the Firewall Client software. Considerations include the cost and complexity of deployment.
    • Troubleshoot autodetection.
  • Configure the client computer's Web browser to use ISA Server as an HTTP proxy.
Monitoring, Managing, and Analyzing ISA Server Use
  • Monitor security and network usage by using logging and alerting.
    • Configure intrusion detection.
    • Configure an alert to send an e-mail message to an administrator.
    • Automate alert configuration.
    • Monitor alert status.
  • Troubleshoot problems with security and network usage.
    • Detect connections by using Netstat.
    • Test the status of external ports by using Telnet or Network Monitor.
  • Analyze the performance of the ISA Server computer. Methods include the use of Performance Monitor, reports, and log files.
  • Optimize the performance of the ISA Server computer. Considerations include capacity planning, allocation priorities, and trend analysis.
    • Control the total RAM used by ISA Server for caching.
Preparation Tools and ResourcesTo help you prepare for this exam, Microsoft Learning recommends that you have hands-on experience with the product and that you use the following training resources. These training resources do not necessarily cover all of the topics listed in the "Skills Measured" tab.
Classroom Training There is no classroom training currently available.
Microsoft E-Learning There is no Microsoft E-Learning training currently available.
Microsoft Press Books There are no Microsoft Press books currently available.
Practice Tests
Microsoft Online Resources
  • TechNet: Designed for IT professionals, this site includes how-to instructions, best practices, downloads, technical chats, and much more.
  • MSDN: The Microsoft Developer Network (MSDN) is a reference for developers. It features code samples, technical articles, newsgroups, chats, and more.
  • Training and certification newsgroups: There is a newsgroup for every Microsoft certification. By participating in the ongoing dialogue, you take advantage of a unique opportunity to exchange ideas with and ask questions of others, including more than 750 Microsoft Most Valuable Professionals (MVPs) worldwide.
Have Questions? For advice about training and certification, connect with peers: For questions about a specific certification, chat with a Microsoft Certified Professional (MCP): To find out about recommended blogs, Web sites, and upcoming Live Meetings on popular topics, visit our community site:
Exam index

How To Get It

Schedule your exam through the following exam provider:

Related Services