Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Open the Ports

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 Firewall] >> General >> Open the Ports Page: [1]
Login
Message << Older Topic   Newer Topic >>
Open the Ports - 9.Nov.2006 10:15:02 AM   
tnuge33

 

Posts: 3
Joined: 9.Nov.2006
Status: offline 		We have added new training hardware/software which requires us to OPEN a specific port (5000) on the Training PC.  No knowing the ins and outs of ISA I thought I had done this, but they still "don't see" the PC.  To narrow it down to a firewall isssue, I opened all ports to this one PC by doing the following:
Created an IP Packet filter for ANY IP PROTOCOL in both directions for local computer (specifying IP address of training PC) to any external computer.
I thought this would do it ... but no deal!  I feel I must be missing something.  Do I have to define the ports (Define Protocol)?  Is there something else I must do?
Post #: 1
RE: Open the Ports - 9.Nov.2006 2:32:12 PM   
spouseele

 

Posts: 12782
Joined: 1.Jun.2001
From: Belgium
Status: offline 		Hi tnuge33,

that won't work. You need to server publish that TCP port on that specific pc onto the ISA external interface. Basically, these are the configuration steps:
  • make sure the pc is configured as SecureNAT client.
  • create a protocol definition with as parameters TCP port 5000 inbound.
  • create a new server publishing rule using the newly created protocl definition.

HTH,
Stefaan

(in reply to tnuge33)
Post #: 2
RE: Open the Ports - 9.Nov.2006 5:04:14 PM   
tnuge33

 

Posts: 3
Joined: 9.Nov.2006
Status: offline 		I was unsuccessful after I added the protocol definition and publishing rule.  I did not delete the IP Packet Filter I previously created ... Should I have?

Thanks!

(in reply to spouseele)
Post #: 3
RE: Open the Ports - 10.Nov.2006 7:59:32 AM   
spouseele

 

Posts: 12782
Joined: 1.Jun.2001
From: Belgium
Status: offline 		Hi tnuge33,

quote:

I did not delete the IP Packet Filter I previously created ... Should I have?

Yep, you should! Never create IP packet filters yourself unless you have a very specific scenario such as a trihomed DMZ scenario.

How did you test that the server publishing rule don't work? Maybe that server publishing rule does work but it is not enough to make the application happy. I suggest you check out the IP Packet filter and Firewall log for more details.

HTH,
Stefaan

(in reply to tnuge33)
Post #: 4
RE: Open the Ports - 16.Nov.2006 9:42:11 AM   
tnuge33

 

Posts: 3
Joined: 9.Nov.2006
Status: offline 		Stefaan,

After some great reading (zzzz....) of some ISA manuals on the Microsoft website, and with the direction you pointed me to, I believe I have the issue resolved now!!

Once again, thank you for pointing me in the right direction!


< Message edited by tnuge33 -- 16.Nov.2006 3:53:06 PM >

(in reply to spouseele)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 Firewall] >> General >> Open the Ports Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts