RE: RES: HTTP > HTTPS redirect

• From: "Shawn Schiebrel" <SSchiebrel@xxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Fri, 2 Aug 2002 11:44:29 -0400

it depends...  if you select require ssl on the web server.. and are web 
publishing ( this is different than server publishing ) on the isa box then you 
would have 2 tunnels
 
web server -> ssl -> ISA -> ssl -> CLIENT
 
it is important to point out that the 2 ssl tunnels above are totally 
independent of each other and require 2 different certs, the tunnel to the web 
server is NOT a continuation of the client to isa tunnel.
kind of redundant.   I terminate all my SSL connections at the ISA box and 
bridge ssl to http from the ISA box to web server
 
web server -> http -> ISA -> ssl -> CLIENT
 
of course.. if you wanted to, you could just open 443 and 80 to go right to 
your web server through the ISA box... then selecting requre ssl on the server 
would work just fine... but you would be ignoring one of the best reasons for 
ISA in my opinion, web publishing.

-----Original Message-----
From: David Baldwin [mailto:dbaldwin@xxxxxxxxxxxxxxxxxx]
Sent: Friday, August 02, 2002 11:30 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: RES: HTTP > HTTPS redirect


http://www.ISAserver.org



Would the SSL then be terminated on the web server and not the ISA server?  Or 
can I terminate the SSL at the ISA and still select "require SSL" at the web 
server?

 

Dave

 

-----Original Message-----
From: Phill Hardstaff [mailto:phillh@xxxxxxx] 
Sent: Thursday, August 01, 2002 11:22 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: RES: HTTP > HTTPS redirect

 

http://www.ISAserver.org

Go to your web site properties, then click on Directory Security, Secure 
communications, edit, then select "require SSL" they will get a message saying 
they have to use https.

From Help File : 

Secure Communications,  Use this dialog box to configure Secure Sockets Layer 
(SSL) encrypted communication for visitors using a Web browser that supports 
secure communications (URLs starting with https:// ). For more information, see 
Encryption.

Require secure channel (SSL), To require an encrypted communication link for a 
Web browser to connect with this Web site, directory, or file, select this 
option. 

Phill 

Phill Hardstaff 
Loggerythm Software 
Free ISA Reporting Tool 
http://www.loggerythm.com/ 

 

-----Original Message----- 
From: Lawton - Assist. Técnico TI CIG/CET [ mailto:lawton@xxxxxxxxxxx] 
Sent: Friday, 2 August 2002 7:12 AM 
To: [ISAserver.org Discussion List] 
Subject: [isalist] RES: HTTP > HTTPS redirect 

 

http://www.ISAserver.org 

 

Aqui fala um pouco se como redirecionar sites. Dê uma lida. 

-----Mensagem original----- 
De: David Baldwin [ mailto:dbaldwin@xxxxxxxxxxxxxxxxxx] 
Enviada em: quinta-feira, 1 de agosto de 2002 12:09 
Para: [ISAserver.org Discussion List] 
Assunto: [isalist] HTTP > HTTPS redirect 

 

http://www.ISAserver.org 

 

Hi, 
I have searched all over the MS website and isaserver.org for anything related 
to this with no luck. We have a single url, sub.domain.com. We would like for 
customers to be able to type in either sub.domain.com or http://sub.domain.com 
and be directed to https://sub.domain.com. The site is hosted behind the ISA 
2000 server on Win2k with IIS 5. There is a certificate installed on the ISA 
server for sub.domain.com. I considered putting a blank default.asp page in 
with a redirect to the https url, but I understand that, once a customer is 
authenticated on the https://sub.domain.com login page they can type in 
http://sub.domain.com/path and be allowed access.  There is a requirement for 
all pages to be secured with no option to view pages that are not secured. The 
ISA server hosts multiple web sites on separate external IP addresses that are 
not related.

This might be a simple question but I am a web newbie. 
Thanks in advance for any suggestions, 
Dave 

------------------------------------------------------ 
You are currently subscribed to this ISAserver.org Discussion List as: 
lawton@xxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')

--- 
Incoming mail is certified Virus Free. 
Checked by AVG anti-virus system ( http://www.grisoft.com). 
Version: 6.0.377 / Virus Database: 211 - Release Date: 15/07/2002 
  

--- 
Outgoing mail is certified Virus Free. 
Checked by AVG anti-virus system ( http://www.grisoft.com). 
Version: 6.0.380 / Virus Database: 213 - Release Date: 24/07/2002 
  

------------------------------------------------------ 
You are currently subscribed to this ISAserver.org Discussion List as: 
phillh@xxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as: 
dbaldwin@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub') 

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as: 
shawn@xxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub') 

Other related posts:

• » RES: HTTP > HTTPS redirect
• » RE: RES: HTTP > HTTPS redirect
• » RE: RES: HTTP > HTTPS redirect
• » RE: RES: HTTP > HTTPS redirect
• » RE: RES: HTTP > HTTPS redirect
• » RE: RES: HTTP > HTTPS redirect

1. Home
2. isalist
3. Archive
4. 08-2002

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---