ISA only allows some connections (Full Version)

All Forums >> [ISA Server 2004 General ] >> General



Message


talkinggoat -> ISA only allows some connections (28.May2010 2:25:18 PM)

I setup an ISA server on our perimeter to block only certain incoming connections, everything else is supposed to be open. I have a rule set to allow all, from any network, to any destination, by any user, outgoing, no exceptions. However, ISA still blocks some outgoing connections. It allows 80, but blocks 25, 3389, etc... It only does it to some hosts, others are fine. The computer with the ISA server, itself, has the ability to access any network. What am I missing, here?




pwindell -> RE: ISA only allows some connections (3.Jun.2010 4:06:17 PM)

I setup an ISA server on our perimeter to block only certain incoming connections, everything else is supposed to be open.

Not possible.  There is no such thing as a Publishing Rule that "Allows everything but..."

Publishing Rules only allow the specific things that Publishing Rule is designed to do.  Completely different types of Publilshhing Rules exist for completely different types of jobs.

ISA denies everything by default,...it only allows what you specifically tell it to allow.

Publishing Rules are for inbound traffic over NATed and Proxyied connections

Access Rules are for outbound access over NATed or Proxyied connections.

Access Rules are also used for bi-directional traffic over "routed" connections (no NAT, no proxying).

You do not "allow ports",...you do not "open ports".

You create Protocols or choose pre-defined Protocols and either allow or disallow their use.




Page: [1]