• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

All Outbound Traffice

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> General >> All Outbound Traffice Page: [1]
Login
Message << Older Topic   Newer Topic >>
All Outbound Traffice - 28.Oct.2008 1:57:02 PM   
spobeda

 

Posts: 23
Joined: 28.Feb.2006
Status: offline
Hello,
I have the rule that allow access to internet, in theTab Protocols I have All Outbound Traffic, but when I need to use for example the NTP protocol for sincronize the time with for example NTP Pool Project (http://www.pool.ntp.org/zone/ar), the Isa Server deny the connection.
What is the problem ? When I put All Outbound traffic is not all traffic ? or the meaning the all outbound traffic is only the protocols well know (http, https, dns, etc).
In the case that the all outbound traffic are the well know protocols (https, dns, http, telnet, etc), have i the posibility to include other protocolos in this groups ? or I have create the new rule allowing the specific protocols ?

Thks !
Post #: 1
RE: All Outbound Traffice - 28.Oct.2008 2:15:25 PM   
Rotorblade

 

Posts: 1348
Joined: 27.Feb.2007
Status: offline
quote:


When I put All Outbound traffic is not all traffic ?


Well it would depend on what ISA client you are using. If you're using the ISA Firewall client, "all outbound traffic" would include all protocols that are defined in ISA and some that are not. For SecureNat client access, only the protocols that are defined in ISA are allowed.

So.... the first question; what client access are you using?
Second question; do you have two or more nic's installed and configured?

RB


_____________________________

David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003

(in reply to spobeda)
Post #: 2
RE: All Outbound Traffice - 28.Oct.2008 2:22:51 PM   
spobeda

 

Posts: 23
Joined: 28.Feb.2006
Status: offline
Hello David !

I have 2 Nic Cards (internat and external)
I use the Web Client (Internet Explorer).

Regards

(in reply to Rotorblade)
Post #: 3
RE: All Outbound Traffice - 28.Oct.2008 2:24:56 PM   
Rotorblade

 

Posts: 1348
Joined: 27.Feb.2007
Status: offline
quote:


I have create the new rule allowing the specific protocols ?


For best practice, security and general ISA house keeping it's always best to create access rules based on the specific access need and or protocols. You should avoid using the “All Open Rule” if at all possible and require authentication in your access rules.

HTH

RB   


_____________________________

David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003

(in reply to Rotorblade)
Post #: 4
RE: All Outbound Traffice - 28.Oct.2008 2:30:47 PM   
Rotorblade

 

Posts: 1348
Joined: 27.Feb.2007
Status: offline
quote:

 
I use the Web Client (Internet Explorer).

I would say that this is the problem.

You will need to install the Firewall client or configure for SecureNAT client access for NTP protocol access.  (Do not isnall the Firewall client on the ISA server!) Web proxy access is web protocols only! (HTTP,HTTPS,FTP)

HTH

Cheers,
RB

_____________________________

David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003

(in reply to spobeda)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> General >> All Outbound Traffice Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts