Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Unable to allow syslog traffic through ISA (from external to internal)

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> Server Publishing >> Unable to allow syslog traffic through ISA (from external to internal) Page: [1]
Login
Message << Older Topic   Newer Topic >>
Unable to allow syslog traffic through ISA (from extern... - 3.Nov.2005 3:24:00 PM   
bjmca

 

Posts: 3
Joined: 3.Nov.2005
Status: offline 		Hi,

I have a PIX sending UDP 514 traffic through the external interface of an ISA 2004 SP1 (fully patched, 2 NICs) box to an internal Syslog Deamon.
I have a protocol set up as Syslog, UDP Port 514, Receive Send. I have a Server Publishing rule set up to Allow Traffic, Syslog, from the internal interface of the PIX to the Syslog daemon, Listener - External, Schedule - Always. The rule is listed as number 1 in the order of rules.
When I run monitoring on ISA, I get Origional Client IP - PIX Internal Interface IP, Destination IP address - Syslog Daemon IP, Destination Port - 514, Protocol - Unidentified IP traffic, Action - Denied Connection, Rule - (Blank).
I have other Server publishing rules that work correctly.

Any ideas? Thanks.
Post #: 1
RE: Unable to allow syslog traffic through ISA (from ex... - 6.Nov.2005 5:19:00 PM   
bjmca

 

Posts: 3
Joined: 3.Nov.2005
Status: offline 		Has anyone got any ideas re. this?

Any assistance gratefully received!

(in reply to bjmca)
Post #: 2
RE: Unable to allow syslog traffic through ISA (from ex... - 6.Nov.2005 10:47:00 PM   
bjmca

 

Posts: 3
Joined: 3.Nov.2005
Status: offline 		Hi,

I have resolved this by changing my Network Rules. I had a network rule set up that performed nat between the source network (Internal) and the destination network (External).
If this is set to Route, then the syslog protocol works. Unfortunatly the server publishing rules no longer work.
How can I get the server publishing rule to now work (publishing a SMTP server)?
FYI we have an adsl router that performs NAT.

Any advice welcome!

(in reply to bjmca)
Post #: 3

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> Server Publishing >> Unable to allow syslog traffic through ISA (from external to internal) Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts