• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Help with Protocol Definitions and Rules

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 Misc.] >> Gaming >> Help with Protocol Definitions and Rules Page: [1]
Login
Message << Older Topic   Newer Topic >>
Help with Protocol Definitions and Rules - 27.Dec.2002 1:42:00 AM   
ducle

 

Posts: 24
Joined: 16.Jun.2002
Status: offline 		Hi,

I'm getting the strangest behavior I don't
understand. I used to be able to connect to MSN
Zone with the following protocol definitions:
for main zone:
primary connection: 6667 TCP Outbound
secondary: 28800 - 29100 TCP Outbound
for directplay:
primary: 47624 TCP Outbound
secondary: 2300-2400 Send/Receive
2300-2400 TCP Outbound
2300-2400 TCP Inbound

This worked fine for a week. I reformatted my
client hard drive and reinstalled all apps
and the firewall client. Now, I can't connect
to the MSN Zone or the DirectPlay.

I played around and found if I added a protocol:
primary: 28870 TCP Outbound
that I can now connect to the zone lobby...
I don't understand why the secondary connections
didn't apply.

Likewise, I see the 47624 TCP request go out,
via the netstat and the ISA logs. I see a
SYN request from the server for port 2300 TCP
Inbound being blocked in the ISA IP logs.

I don't understand why the DirectPlay protocol
definition wouldn't allow 2300 TCP to come in.

Can anyone help me solve this problem? It
seems none of the secondary connections seem
to work.

Duc Le
ducle@wideopenwest.com
Post #: 1
RE: Help with Protocol Definitions and Rules - 27.Dec.2002 2:43:00 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Duc,

I'm moving this to the Gaming section as the gaming experts hang out over there.

Thanks!
Tom

(in reply to ducle)
Post #: 2
RE: Help with Protocol Definitions and Rules - 27.Dec.2002 5:02:00 AM   
dwhyte

 

Posts: 11
Joined: 4.Sep.2002
Status: offline 		I have had these problems too. It does seem to me that the secondary connections do not work. Can anyone explain secondary connections and ISA Server?
Dave

(in reply to ducle)
Post #: 3
RE: Help with Protocol Definitions and Rules - 27.Dec.2002 3:59:00 PM   
spouseele

 

Posts: 12830
Joined: 1.Jun.2001
From: Belgium
Status: offline 		Hi Dave,

Basically, secondary connections are only allowed if the primary connection is already established.

One of the best known example I can give you for complex protocols, that means protocols with a primary and one of more secondary connections, is the FTP protocol. Check out my article How the FTP protocol Challenges Firewall Security for full details how the FTP protocol works. Another documented example can be found in my article Using NetMeeting and the H.323 Gatekeeper as a HelpDesk tool.

HTH,
Stefaan

(in reply to ducle)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 Misc.] >> Gaming >> Help with Protocol Definitions and Rules Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts