I know it sounds simple enough, but I am trying to get the ISA 2004 server to pass ALL traffic between all internal addresses.
We are having trouble with ShoreTel IP phones communicating with workstation software properly. The ShoreTel phones are on a different subnet than the PC's, and for some reason, the ISA server is blocking traffic in a way that is keeping the software from functioning properly. I have opened all the ports the vendor says should do it, but it is not.
I want to open 100% traffic between all internal subnets, vpn networks, etc, while still blocking the outside world, regardless of the user / machine.
Can anyone give me a quick method of doing this? I will then work backwards until I find where the failure is, but for now, we need the functionality.
Using allow, "All Outbound Traffic," would only allow the defined protocols. If the ShoreTel phones use a protocol/port that isn't defined, then that port isn't allowed.
1) What port(s) does logging indicated is getting blocked? 2) Create a new 'protocol,' that spans 0 - 65535. Add that 'protocol' to your desired networks. Probably not a good idea to have this on for long though.