S

SAP Agent service

The service that allows IPX name resolution on Firewall client computers.

secure Web publishing

The process by which a server behind ISA can publish to the World Wide Web (WWW) without compromising security. See also reverse hosting and publishing.

SecureNAT

SecureNAT is an extension of the Windows 2000 NAT driver. ISA Server's secure network address translation (NAT) feature provides a degree of address transparency for networked clients. NAT substitutes a global IP address, valid on the Internet, for an internal IP address. ISA Server enhances the underlying NAT functionality in Windows 2000, by enabling access control for FTP, Windows NetMeeting for H.323, and T-120 protocols. It also enables rerouting HTTP requests, which can then frequently be satisfied by a local cache. This enhancement greatly improves HTTP performance and lowers bandwidth requirements.

Secure Sockets Layer (SSL)

A protocol that supplies secure data communication through data encryption and decryption. SSL enables communications privacy over networks.

Sequenced Packet Exchange (SPX)

A transport-level protocol developed for use in Novell NetWare networks. SPX is used in place of TCP to verify packet delivery, ensure proper sequencing of packet data, and provide connected service between devices on a network. See also Internetwork Packet Exchange (IPX).

Serial Line Internet Protocol (SLIP)

An older industry standard communications protocol that standardizes dial-up networking. See also Point-to-Point Protocol (PPP).

Server Message Block (SMB) protocol

The underlying protocol by which Microsoft Windows 2000-based servers communicate critical service information with one another.

Service Advertising Protocol (SAP)

In the Windows environment, SAP is a service that broadcasts shared files, directories, and printers categorized first by domain or workgroup, and then by server name.

In the context of routing and IPX, SAP is used by servers to advertise their services and addresses on the network. Clients use SAP to determine what network resources are available.

SID

A security identifier that is part of the access control entry (ACE).

Simple Mail Transfer Protocol (SMTP)

An Internet standard protocol used for exchanging e-mail messages between SMTP servers on the Internet.

Simple Network Management Protocol (SNMP)

A standard protocol used for monitoring your network. See also management information database (MIB).

site and content rules

Rules defined by the ISA administrator that establish whether content on specified destinations can be accessed by specific users and when the rule is in effect.

SMTP

See Simple Mail Transfer Protocol.

snap-in

Software that makes up the smallest unit of console extension. One snap-in represents one unit of management behavior (for example, the Windows 2000 event log viewer is a functional unit of management and thus a good candidate to become a snap-in). Technically, snap-ins are OLE InProc servers.

SNMP

See Simple Network Management Protocol.

socket

A logical communications channel used by TCP/IP applications. Sockets are data structures created by using a combination of device IP addresses and reserved TCP/UDP port numbers to indicate connection and delivery service information. See also Windows Sockets.

SOCKS

A protocol for traversing firewalls in a secure and controlled manner, made available to the public by the Internet Engineering Task Force (IETF).

SPX

See Sequenced Packet Exchange.

SQL server

A server that uses the structured query language (SQL) to query, update, and manage a relational database.

SSL

See Secure Sockets Layer.

stand-alone mode snap-in

A snap-in that provides functionality even if loaded alone in a console that has no other snap-ins.

static filters

Filters that allow packets from other administrator-selected services from the Internet. A static filter is created during configuration of ISA by using the user interface. If IP packet filtering is enabled, the static filter is always on.

static IP mapping

A method provided on a WINS server to assign a static (unchanging) IP address to a client.

structured query language (SQL)

A database query and programming language widely used for accessing data in, querying, updating, and managing relational database systems. See also SQL server.

subnet mask

A TCP/IP configuration parameter that extracts network and host configuration from an IP address. This 32-bit value enables the recipient of IP packets to distinguish the network ID portion (domain name) of the IP address from the host ID (host name).

system access-control list (SACL)

A list that controls the generation of audit messages for attempts to access a securable object. The ability to get or set an object's SACL is controlled by a privilege typically held only by system administrators.

Systems Management Server (SMS)

A Windows 2000 Server network server application that remotely manages the computers on a network. SMS detects computers on the network, inventories software and hardware configurations, and installs client applications from a central location.