Proograms on ISA box (Full Version)

All Forums >> [ISA Server 2000 General] >> General



Message


Mark H -> Proograms on ISA box (16.Nov.2001 3:08:00 PM)

I am having trouble running things like
Morpheus, loaal POP3 email programs, Cute FTP

on the ISA box itself. Clients have no problems. How do I set up the pacet filters
to allow the local use of verious
internet program?

Thanks
Mark





Jez -> RE: Proograms on ISA box (16.Nov.2001 4:07:00 PM)

Depends on the application, but to create a packet filter:

1. Open the ISA Management Tool
2. Open Access Policy
3. Open IP Packet Filters
4. Select Create a Packet Filter
5. Give it a name
6. Select Allow Packet Transmission
7. Select Custom
8. Now you need to enter the details for the application (Protocol, Direction, local port, remote port). These are the same as used for the protocol rules (look under policy elements->protocol definitions).

To get you started, use the create the following:

POP3:
Protocol: TCP
Direction: Outbound
Local Port: Dynamic
Remote Port: Fixed, 110

FTP:
Protocol: TCP
Direction: Outbound
Local Port: Dynamic
Remote Port: 21
AND
Protocol: TCP
Direction: Inbound
Local Port: All Ports
Remote Port: 20

Think thats right...let us know if not.

------------------
Regards,
Jez
email: jez@cableserver.co.uk
www: www.cableserver.co.uk
MSN Messenger: jeremybcooke@hotmail.com





Jez -> RE: Proograms on ISA box (16.Nov.2001 4:07:00 PM)

Depends on the application, but to create a packet filter:

1. Open the ISA Management Tool
2. Open Access Policy
3. Open IP Packet Filters
4. Select Create a Packet Filter
5. Give it a name
6. Select Allow Packet Transmission
7. Select Custom
8. Now you need to enter the details for the application (Protocol, Direction, local port, remote port). These are the same as used for the protocol rules (look under policy elements->protocol definitions).

To get you started, use the create the following:

POP3:
Protocol: TCP
Direction: Outbound
Local Port: Dynamic
Remote Port: Fixed, 110

FTP:
Protocol: TCP
Direction: Outbound
Local Port: Dynamic
Remote Port: 21
AND
Protocol: TCP
Direction: Inbound
Local Port: All Ports
Remote Port: 20

Think thats right...let us know if not.

------------------
Regards,
Jez
email: jez@cableserver.co.uk
www: www.cableserver.co.uk
MSN Messenger: jeremybcooke@hotmail.com





Jez -> RE: Proograms on ISA box (16.Nov.2001 4:07:00 PM)

Ok, thats weird, 2 posts with just 1 click...how clever.

------------------
Regards,
Jez
email: jez@cableserver.co.uk
www: www.cableserver.co.uk
MSN Messenger: jeremybcooke@hotmail.com





Mark H -> RE: Proograms on ISA box (16.Nov.2001 8:13:00 PM)

The only way I can get anything to work
locally is to
direction = both
Local port = All ports

I am atempting to get Pegasus email
port 25 and 110
to send and recieve email locally

I have 2 filters one for port 25 and one for port 110

when I have these set up the mail program will not work.
any ideas?

Thanks
:-)
Mark h

quote:
Originally posted by Mark H:
I am having trouble running things like
Morpheus, loaal POP3 email programs, Cute FTP

on the ISA box itself. Clients have no problems. How do I set up the pacet filters
to allow the local use of verious
internet program?

Thanks
Mark






Jez -> RE: Proograms on ISA box (16.Nov.2001 8:36:00 PM)

Do you have packet filtering and IP routing enabled?

I always suggest downloading bt-Patrol from www.burstek.com (realtime log viewer), then watch the log files as you attempt a connection, you will see which ports are being blocked, and be able to open them up.

However, creating the previously mentioned packet filters should work (its working for me here!).

SMTP will look like:
Protocol: TCP
Direction: Outbound
Local Port: Dynamic
Remote Port: Fixed, 25

------------------
Regards,
Jez
email: jez@cableserver.co.uk
www: www.cableserver.co.uk
MSN Messenger: jeremybcooke@hotmail.com





Mark H -> RE: Proograms on ISA box (19.Nov.2001 1:39:00 PM)

Yup, IP filtering and routing is / are
enabled.

Whats next
:-)

Thanks Mark





Jez -> RE: Proograms on ISA box (19.Nov.2001 4:44:00 PM)

When you look at the log files, is anything being blocked?

------------------
Regards,
Jeremy
email: jeremy@cableserver.co.uk
www: www.cableserver.co.uk
MSN Messenger: jeremybcooke@hotmail.com

Two books I would highly recommend:

(Click an image to see the book at amazon)





Mark H -> RE: Proograms on ISA box (19.Nov.2001 4:58:00 PM)

which log files?
In the event log?
or that porgram that you recommend I install?

Thanks
:-)
Mark





Jez -> RE: Proograms on ISA box (20.Nov.2001 2:10:00 AM)

In the ISA log files found under Program Files\Microsoft ISA Server\ISALogs. There are 3 logs, web proxy, firewall and IP packet log.

ALthough yes, i would use bt-patrol, much easier :-)

------------------
Regards,
Jeremy
email: jeremy@cableserver.co.uk
www: www.cableserver.co.uk
MSN Messenger: jeremybcooke@hotmail.com

Two books I would highly recommend:

(Click an image to see the book at amazon)





Page: [1]