Re: IP packet filters dont work
- From: "PETER J KATHLEEN PAPE" <papexpjboi@xxxxxxx>
- To: isalist@xxxxxxxxxxxxx
- Date: Thu, 27 Feb 2003 12:22:47 -0700
A port scanner will tell you if a service is listening on a port. It won't
tell you if a port is allowed throught the firewall. Try setting up a mail
client to connect to a POP3 server outside the firewall. That will tell you
if you have the packet filter set-up correctly.
I would recommend using protocol rules instead of packet filters. They are
easier to work with and can be set up to allow user level access.
I would also recommend that you not open up all protocols. Just open the
ones you need.
From: "Ali YUKSEL" <aliyuksel@xxxxxxxxxx>
Reply-To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Subject: [isalist] IP packet filters dont work
Date: Thu, 27 Feb 2003 18:16:53 +0200
http://www.ISAserver.org
Hi;
i am new to this group and my first mail, maybe you've already answered
this question...
i have windows 2000 server and network and external connection with radio
link.
isa sp1 is installed, windows2000 sp3 is installed.
From protol rules i let all ip tarffic and from ip packet filters i opened
some ports like pop3, but when i scan internal and external ip i cant see
the ports that i let. Another interesting point is if i stopped the isa
server services and if i scan again i see the same ports, so it seems isa
doesnot decide anything..
no another firewall is installed and ipsec is not enabled. I have 3
ethernet cards. 1 is external and the others are internal.
someone has any clue?
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
papexpjboi@xxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
_________________________________________________________________
STOP MORE SPAM with the new MSN 8 and get 2 months FREE*
http://join.msn.com/?page=features/junkmail
Other related posts:
- » IP packet filters dont work
- » RE: IP packet filters dont work
- » RE: IP packet filters dont work
- » Re: IP packet filters dont work
- » Re: IP packet filters dont work
- » RE: IP packet filters dont work
From: "Ali YUKSEL" <aliyuksel@xxxxxxxxxx> Reply-To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Subject: [isalist] IP packet filters dont work Date: Thu, 27 Feb 2003 18:16:53 +0200
http://www.ISAserver.org
Hi;
i am new to this group and my first mail, maybe you've already answered this question...
i have windows 2000 server and network and external connection with radio link.
isa sp1 is installed, windows2000 sp3 is installed.
From protol rules i let all ip tarffic and from ip packet filters i opened some ports like pop3, but when i scan internal and external ip i cant see the ports that i let. Another interesting point is if i stopped the isa server services and if i scan again i see the same ports, so it seems isa doesnot decide anything..
no another firewall is installed and ipsec is not enabled. I have 3 ethernet cards. 1 is external and the others are internal.
someone has any clue?
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as: papexpjboi@xxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')