I want to be able to redirect specific port to a specific server, no matter what the original destination was, for example: I want to be able to redirect all SMTP outbound request to a specific SMTP server, no matter what was the original destination.
How exactly should I do it. This is what I did: I Published an IP address of the smtp server in the external network for all internal networks (Nat relationship) - didn't work. I tried publishing a smtp server in the perimeter network (Route relationship to internal) - didn't work.
RE: Global Port Redirection - 18.Dec.2006 9:39:10 AM
Hi Tomers, I'm a little confused about the:
"no matter what was the original destination."
what this exactly means? for example if you publish a server, ISA will listen on the network adapter you have selected and if it found a match it will forward traffic to the server you have specified. but ISA will listen only for traffic that was intended to go to it. this means if you forward a traffic to port 25 to a snmp server by name, the DNS will resolve that name and that name must match the ip address on the ISA interface for ISA to forward to the choosen SMTP server(which can do relay or whatever). if the ip address is not one from those ISA is listen it will not redirect the traffic. this will be dropped or permitted based on the rules created by you. be carefully with traffic "redirections"(some of them might come on the incidence of some laws if you do not have permission to do so). do you want to set some sort of SMTP relay or what exactly are you trying to accomplish? what kind of redirection are you trying to do? from who to who?
< Message edited by adrian_dimcev -- 18.Dec.2006 9:42:29 AM >
I want to acomplish the following goal: I have different clients inside my network, which I don't have control of. Some of the clients try to connect to different SMTP servers on the internet in order to send emails. I want to redirect those clients to a specific SMTP server inside my network without changing any configuration on their PC's. Even if they will try to connect to a SMTP server on the external, I want the ISA to redirect them to my chosen SMTP server inside the network. It means that ISA will have to redirect all SMTP traffic from PC's, regardless of the address they tried to connect to. Am I understood ?
RE: Global Port Redirection - 19.Dec.2006 4:01:44 AM
Loud and clear mate! Unfortunetely you can't do that! You can do a redirection to specific servers based on clients IP addresses but this redirection only applies if the request will come for the IP addresses ISA is listening to it(the addresses bound to that interface).
From ISA help:
The listener network, or networks, that you select depend on the networks from which clients will connect to the published server. For example, if the service you are publishing accepts client requests from the Internet (External network), you should select the External network for the listener. By selecting the External network, you are selecting the IP addresses on the ISA Server computer that are associated with the External network adapter. If you do not limit the IP addresses, all IP addresses associated with the selected network adapter will be included in the listener configuration.