1st, pardon this post if this has been answered elsewhere, but I've searched the forums and can't find the answer.
2nd, yes, I'm a complete N00b with ISA.
Setup: ISA server installed as stand alone (integrated). Connected to (static) DSL on the public side, and a 192.168.100/24 private network. DNS (and DHCP) is running on the ISA, not the best practice, I know, but no choice.
I need clients (preferably firewall clients) to be able to telnet to systems on the internet on ports other than 23 (5555 and 6969) from the clients, but not the server.
I have a Site and Content rule that opens all to all
I have a protocol rule that allows all to all
1) I can't connect either from the server, unless I set up a packet filter (custom, any IP, any direction, default on external, all remote)
2) With this filter, I can connect from the server to servers on 23 and 5555/6969
3) With this filter I can only connect clients (not firewall yet, so, SecureNat?) to servers on port 23.
Eventually, I'm going to deny all, and only allow http, https, telnet ssl and maybe AIM in, but for now, I'm just trying to connect!