Interesting angle; didn't think to check the SEP docs for SBS 2003.
But this
ISN'T SBS 2003, with all SBS's compromises. It's a company whose needs exceeded SBS years ago, that uses ISA 2004 & 2006 on WS2003 R2 SP2. A no-compromise, dedicated firewall paid for by a company that believes it needs a no-compromise, dedicated firewall. And there's nothing in that document that specifically says SEP on ISA is a great idea.
So if this is as close as Symantec comes to endorsing SEP on ISA, my take is that it means, "Of course, one MUST have file system AV protection on a file server, and SBS is, among other things, a file server. Unfortunately, SBS 2003 Premium may also happen to have ISA on it. And if it does, then we guess it's OK to use SEP. But only because you have to use
some kind of AV, and ISA's on running on the same hardware, and SBS users are not likely to put their ISA firewalls on separate hardware just because they want to use SEP."
But that's
not the same thing as saying, "Symantec recommends that you install SEP on your standalone ISA firewalls. We have tested SEP on ISA, and we certify full compatibility. No compromises, no exceptions...it's tested, recommended and supported."
Is there anything in any other document that says that? (Substantially, if not word-for-word.) Because if not, I'm inclined to stay with Shinder's recommendation and keep SEP off of ISA computers.