• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Access only to FTP and a particular website.

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> Access Policies >> Access only to FTP and a particular website. Page: [1]
Login
Message << Older Topic   Newer Topic >>
Access only to FTP and a particular website. - 2.Mar.2006 11:59:05 AM   
Zac

 

Posts: 44
Joined: 6.Oct.2005
From: Kuwait
Status: offline
Hi,

I want to create an access rule which allows access only to FTP and a particular website, for a specific user. I tried many things but either the user gets access to ftp and not to the web site( a specific website), or he gets access to all protocols. Can any one tell me how to get it done?


Thanks in Advance

Zac.
Post #: 1
RE: Access only to FTP and a particular website. - 4.Mar.2006 4:36:41 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Zac,

FTP and HTTP protocols both to a single site?

Thanks!
Tom


_____________________________

Thomas W Shinder, M.D.

(in reply to Zac)
Post #: 2
RE: Access only to FTP and a particular website. - 5.Mar.2006 5:44:02 AM   
Zac

 

Posts: 44
Joined: 6.Oct.2005
From: Kuwait
Status: offline
Hi Tom,


FTP and HTTP protocols are not to a single site.This is my requirement. One of our staff is working in our pre-press. He needs to get access only to our ftp site and our company web site. I have set up a FTP server by using one of the IP address given by our ISP(FTP server - Windows 2000 Advanced Server with Server U ftp software). It is not connected to our intranet. The company website is hosted by Verio in UK. I want create an access rule which gives him access only to the FTP server as well as to the company web site.

Hope this gives you the whole picture.


Thanks

Zac

(in reply to tshinder)
Post #: 3
RE: Access only to FTP and a particular website. - 5.Mar.2006 12:02:38 PM   
elmajdal

 

Posts: 6022
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline
 

hi zac,

u need to Publish your FTP site.

u can publish your ftp site on the default port or using an alternative one.

check this link :
http://www.isaserver.org/tutorials/2004pubftpaltport.html

for your company website ,  create a new Domain Name Set , add your website name in it.
then create a new rule ,allowing HTTP or what ever protocols needed,  allowing this specific user to this specific Domain name set.
make sure that this user is excluded from other rules.

this might help you:
http://www.isaserver.org/articles/2004domainnamesets.html


HTH

_____________________________

Tarek Majdalani

Windows Expert - IT Pro MVP
Facebook : https://www.facebook.com/ElMajdal.Net

(in reply to Zac)
Post #: 4
RE: Access only to FTP and a particular website. - 6.Mar.2006 7:51:03 AM   
Zac

 

Posts: 44
Joined: 6.Oct.2005
From: Kuwait
Status: offline
Hi elmajdal,


My requirement is different. I don't have to publish our FTP site since it is not connected to our Intranet (Lan). We are able to access the ftp site without any trouble.

This is my requirement- I want to create a single access rule which enables ftp access to our ftp site, and also to our company website. This rule should block all other requests.



For example a rule which allows only the following
ftp:// 213.132.239.209
http://isaserver.org


Hope you get my idea.

Thank you

Zac.

(in reply to elmajdal)
Post #: 5
RE: Access only to FTP and a particular website. - 6.Mar.2006 11:34:09 PM   
elmajdal

 

Posts: 6022
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline
hi Zac,
 
i am not in the office now , but have u tried this:

create a new Computer Object and add in it the ip of the ftp site. ( lets call it Allow_FTP )

create a new Domain Name Set and add in it the url *.isaserver.org ( lets name it Allow_HTTP)

now create a new Access Rule, include in it :

Action : Allow
Protocols : HTTP FTP
From : Internal
To : Allow_FTP & Allow_HTTP
Condition : All Users , or whatever user or group u need  to grant them this access



if the Computer Object didnt work , try using creating a new URL Set , and add it in ftp://IP
HTH

< Message edited by elmajdal -- 6.Mar.2006 11:38:43 PM >


_____________________________

Tarek Majdalani

Windows Expert - IT Pro MVP
Facebook : https://www.facebook.com/ElMajdal.Net

(in reply to Zac)
Post #: 6
RE: Access only to FTP and a particular website. - 9.Mar.2006 4:45:15 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
quote:

ORIGINAL: Zac

Hi Tom,


FTP and HTTP protocols are not to a single site.This is my requirement. One of our staff is working in our pre-press. He needs to get access only to our ftp site and our company web site. I have set up a FTP server by using one of the IP address given by our ISP(FTP server - Windows 2000 Advanced Server with Server U ftp software). It is not connected to our intranet. The company website is hosted by Verio in UK. I want create an access rule which gives him access only to the FTP server as well as to the company web site.

Hope this gives you the whole picture.


Thanks

Zac

Hi Zac,
OK, create a rule that allows that user to use the FTP protocol to that site only.
Create a second rule that allows that user access to HTTP protocol to the required Web site only.

Make sure that these rules are above any rules that would allow that user to access those sites.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to Zac)
Post #: 7
RE: Access only to FTP and a particular website. - 9.Mar.2006 6:35:31 PM   
elmajdal

 

Posts: 6022
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline
hi Tom,

cant this be accomplished as i described ealier in one rule ??

_____________________________

Tarek Majdalani

Windows Expert - IT Pro MVP
Facebook : https://www.facebook.com/ElMajdal.Net

(in reply to tshinder)
Post #: 8
RE: Access only to FTP and a particular website. - 13.Mar.2006 3:06:52 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi El,

No

Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to elmajdal)
Post #: 9

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> Access Policies >> Access only to FTP and a particular website. Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts