• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Publish DVR server to outside

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 Firewall] >> Firewall Client >> Publish DVR server to outside Page: [1]
Login
Message << Older Topic   Newer Topic >>
Publish DVR server to outside - 24.Mar.2008 9:16:37 PM   
olddog

 

Posts: 8
Joined: 16.Mar.2007
Status: offline
 HI All;

Have a little problem.  I had at one time, before the server crashed, setup a DVR "Digital Video Recorder" on the inside of my SBS2003 Premium  network.  I cannot figure how I had originally did it.  I know I had pecked around for several days before I got it to work.

The DVR has a remote viewing that uses ports 3550,3650,5066.  At one time the DVR server was published to the outside, so by using the DVR remote viewing software I could login to the DVR and see what was going on.  I do know I had published the server. Exactly what I did I do not remember.  I think I had guested and got it working.

Any help

Thanks for listening.

olddog
Post #: 1
RE: Publish DVR server to outside - 24.Mar.2008 11:44:20 PM   
AHIT

 

Posts: 1561
Joined: 22.Jul.2002
From: Sydney, Australia
Status: offline
If you'd "guessed and got it working" then I guess you'd created custome protocol definitions and then used server publishing (Publishing/Server ublishing Rules) to publish the server.
... but beyond that, we'd merely be guessing...

_____________________________

http://www.ahit.com.au/isa
(Previous nick: Tolk)

(in reply to olddog)
Post #: 2
RE: Publish DVR server to outside - 25.Mar.2008 2:16:52 AM   
olddog

 

Posts: 8
Joined: 16.Mar.2007
Status: offline
quote:

ORIGINAL: AHIT

If you'd "guessed and got it working" then I guess you'd created custome protocol definitions and then used server publishing (Publishing/Server ublishing Rules) to publish the server.
... but beyond that, we'd merely be guessing...


Yes, That is what I did But can't get it working.  I do not have the time to jack with this ISA 2000 server.  On My Linux servers I port froward the TCP 3550, 3650 to the DVR box and no problem.

The Geovision DVR Card comes with the software for the DVR computer and the Remote View.

I have been looking in the messages and the blogs on this web site for information on how to publish a server to the outside using  it's internal IP address. I have not been able to find something close that would give me an idea on how to proceed.  This, the DVR, is a stand alone computer if isn't a member of the domain is even better.    I would like to foward the ports to the IP address of the internal DVR computer.

I am looking for what is the best way to do this .

Thank you  for your help.

OldDog 

(in reply to AHIT)
Post #: 3
RE: Publish DVR server to outside - 25.Mar.2008 8:08:28 PM   
olddog

 

Posts: 8
Joined: 16.Mar.2007
Status: offline
This post is in the wrong forum.  It needs to be removed.  I will re state the post in the Server Plublishing Forum.


Thank you all

OldDog

(in reply to olddog)
Post #: 4
RE: Publish DVR server to outside - 26.Mar.2008 9:34:35 PM   
AHIT

 

Posts: 1561
Joined: 22.Jul.2002
From: Sydney, Australia
Status: offline
From the help feature on 'server publishing' within the ISA 2000 Management Console:
quote:


Server publishing rules
Microsoft Internet Security and Acceleration (ISA) Server uses server publishing to process incoming requests to internal servers, such as Simple Mail Transfer Protocol (SMTP) servers, File Transfer Protocol (FTP) servers, Structured Query Language (SQL) servers, and others. Requests are forwarded downstream to an internal server, located behind the ISA Server computer.
Server publishing allows virtually any computer on your internal network to publish to the Internet. Security is not compromised because all incoming requests and outgoing responses pass through ISA Server. When a server is published by an ISA Server computer, the Internet Protocol (IP) addresses that are published are actually the IP addresses of the ISA Server computer. Users who request objects think that they are communicating with the ISA server—whose name or IP address they specify when requesting the object—while they are actually requesting the information from the actual publishing server.
Server publishing rules determine how server publishing functions, essentially filtering all incoming and outgoing requests through the ISA Server computer. Server publishing rules map incoming requests to the appropriate servers behind the ISA Server computer. These rules will grant access dynamically, as specified, from Internet users to the specific publishing server.
The published server is actually a secure network address translation (SecureNAT) client. Because the published server is a SecureNAT client, no special configuration of the published server is required after you create the server publishing rule on the ISA Server computer. Note that ISA Server must be configured as the default gateway on the published server. For more information, see Configuring SecureNAT clients.
Use IP packet filters to publish servers located on a perimeter network (also known as a DMZ, demilitarized zone, and screened subnet). For more information on when to use packet filters and when to use server publishing rules, see Server publishing rules and IP packet filters.
Client address sets
You can limit server publishing rules to specific clients by specifying the client address sets to which the rule applies. Client address sets probably include IP addresses of clients located on the Internet, including those not necessarily in your corporate network. For configuration instructions, see Configure clients for a server publishing rule.
The server publishing rule is applied to client address sets only if IP packet filtering is enabled. If IP packet filtering is not enabled, then the server publishing rule applies to all clients.
Action
When you create the server publishing rule, you specify the following:
  • IP address of the ISA Server. This is the address made available to external clients. When external clients communicate with the publishing server, they actually are communicating with this IP address. This address must be configured as the external IP address on the ISA Server computer.
  • IP address of the publishing server. All requests arriving at the IP address specified by the ISA Server computer are forwarded to this IP address.
  • Mapped server protocol. The data is passed to the internal server, depending on which protocol you specify here. You can select from all protocol definitions configured on the ISA Server with an Inbound direction. For more information, see Configuring protocol definitions.

For more information, see Configure a server publishing rule action.
How Server Publishing Works
To do this, ISA Server takes these steps:
  1. A client computer on the Internet requests an object from an IP address known as that of the publishing server. The IP address is actually associated with the ISA Server computer—it is the IP address of the external network adapter belonging to the ISA Server computer.
  2. The ISA Server computer processes the request, mapping the IP address to an internal IP address of an internal server.
  3. The internal server returns the object to the ISA Server computer, which passes it on to the requesting client.

Example
Suppose you want to allow external clients access to an Simple Mail Transfer Protocol (SMTP) server, whose IP address is 111.111.111.111, and which listens on port 25. You should create a server publishing rule with the following parameters:
  • Set the internal server IP address to 111.111.111.111.
  • Set the mapped external address to an IP address on the external interface card belonging to the ISA Server computer.
  • Set the mapped server protocol to SMTP (server).

To see how server publishing rules are used in a deployment scenario, see Back-to-back perimeter network configuration.



_____________________________

http://www.ahit.com.au/isa
(Previous nick: Tolk)

(in reply to olddog)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 Firewall] >> Firewall Client >> Publish DVR server to outside Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts