We have several types of clients on our network.
1. Regular domain-joined Windows computers of employees.
2. Business partner users who have user accounts on our domain and laptops brought from their companies that access our LAN via manually mapped drives etc., but the laptops are not joined to our domain.
3. Company-owned non-Windows workstations that access the LAN such as Linux workstations.
4. People running virtual machines of various OS's inside their workstations and accessing the Internet through the VMs.
5. Guests with personally owned laptops, IOS and Android devices that go to the same Internet connection with WiFi, but are separated from our LAN.
We have several subnets each with a different gateway, so we cannot simply point all clients directly to the ISA 2006 Server as their gateway.
We must not block access to anything until we see there is a problem. We just want to create reports on what people are using their Internet access for when there are no filtering in place.
We simply need reports on which hosts are going where (host names, host IP addresses/mac addresses, destination domains/URLs and IP addresses, what type of network traffic is it and how much bandwidth was uploaded/downloaded, what time where they there etc.. It must also work with SSL traffic.
Is this within the capability of ISA 2006?
I don't think we need to install ISA client software because we are not filtering by groups and we don't need user names since we can look at host names and find the assigned user in other ways.
We want to make sure no traffic is blocked when the ISA server is initially set up to monitor and report. We cannot install any software on clients nor require configuring proxy settings in browsers or any other application that access the Internet.
How would this best be set up? I guess Securenat and have router gateways forward to the ISA server as long as it can give detailed web use reports on everything short of user names.
I thought ISA 2006 can work as a web proxy with a single NIC, but I don't understand how that would work. Doesn't it need one NIC coming in from the internal gatways and another NIC going out to the gateway going out to the internet or are 2 NICs only needed if ISA is used as a firewall?