RE: Dynamic Ports

• From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Tue, 18 May 2004 13:37:11 -0500

Hi Rob,

You got it!

Tom

Thomas W Shinder
www.isaserver.org/shinder
ISA 2004 Beta - Get it now!
http://www.microsoft.com/isaserver/beta/default.asp
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp

 


-----Original Message-----
From: Rob Moore [mailto:RMoore@xxxxxxxx] 
Sent: Tuesday, May 18, 2004 1:30 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Dynamic Ports


http://www.ISAserver.org

Never mind. An All Open rule is the one you create in the Quick Start
guide, right? I'm not going there...

Rob 

-----Original Message-----
From: Rob Moore 
Sent: Tuesday, May 18, 2004 2:27 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Dynamic Ports

http://www.ISAserver.org

Stupid question: Does the All Open rule open everything up? That doesn't
seem like a Good Thing. (How do you create it?)

Thanks for your help so far!

Rob 

-----Original Message-----
From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
Sent: Tuesday, May 18, 2004 2:18 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Dynamic Ports

http://www.ISAserver.org

Hi Rob,

In that case, dump the firewall and put in a router :-)

Seriously, this app requires outbound access to all high number ports
for outbound access. In that case, I would just create an all open rule
and install the Firewall client on the user's computer. At least there
will be authentication, even though you won't have any outbound access
control.

An alternative would be ISA Server 2004, while allows you to create port
ranges for primary connections. This allows you to open the ephemeral
port range without opening the well-known ports.

HTH,
Tom

Thomas W Shinder
www.isaserver.org/shinder
ISA 2004 Beta - Get it now!
http://www.microsoft.com/isaserver/beta/default.asp
ISA Server and Beyond: http://tinyurl.com/1jq1 Configuring ISA Server:
http://tinyurl.com/1llp

 


-----Original Message-----
From: Rob Moore [mailto:RMoore@xxxxxxxx]
Sent: Tuesday, May 18, 2004 12:35 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Dynamic Ports


http://www.ISAserver.org

Apparently for outbound connections this application doesn't need any
specific ports open. Their tech support says it just picks a random
high-numbered port and attempts to make a connection over it.

What do I need to do to enable that? (Meanwhile, I'm trying to convince
this guy to just use Terminal Services.) Simply installing the firewall
client didn't help.

Thanks,
Rob

-----Original Message-----
From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
Sent: Monday, May 17, 2004 3:16 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Dynamic Ports

http://www.ISAserver.org

Hi Rob,

Do you  know what he means by "dynamic ports"? Is he talking about
secondary connections? If so, the Firewall client will be required and
the precise protocol behavior will have to be determined (or install the
Firewall client on the client machine and create an "all open" rule).

HTH,
Tom

Thomas W Shinder
www.isaserver.org/shinder
ISA 2004 Beta - Get it now!
http://www.microsoft.com/isaserver/beta/default.asp
ISA Server and Beyond: http://tinyurl.com/1jq1 Configuring ISA Server:
http://tinyurl.com/1llp

 


-----Original Message-----
From: Rob Moore [mailto:RMoore@xxxxxxxx]
Sent: Monday, May 17, 2004 10:57 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Dynamic Ports


http://www.ISAserver.org

Hello everyone--

I have an internal user who wants me to be sure an outbound protocol has
the ability to enable dynamic ports as need be. (The program he wants to
use is Timbuktu Remote). I seem to recall that those dynamic ports can
be opened by internal protocols (assuming they're allowed in the first
place). Is that right? How can I check that I have that function
enabled? What number do those dynamic ports start at?

Thanks,
Rob
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Rob Moore, MCSE
Network Manager
American Friends Service Committee
215-241-7870
rmoore@xxxxxxxx

Our greatest glory is not in never failing but in rising every time we
fall.
                       --Confucius


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to
$subst('Email.Unsub')

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
rmoore@xxxxxxxx
To unsubscribe send a blank email to
$subst('Email.Unsub')

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to
$subst('Email.Unsub')

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
rmoore@xxxxxxxx
To unsubscribe send a blank email to
$subst('Email.Unsub')

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
rmoore@xxxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

Other related posts:

• » Dynamic Ports
• » RE: Dynamic Ports
• » RE: Dynamic Ports
• » RE: Dynamic Ports
• » RE: Dynamic Ports
• » RE: Dynamic Ports
• » RE: Dynamic Ports
• » RE: Dynamic Ports
• » RE: Dynamic Ports

1. Home
2. isalist
3. Archive
4. 05-2004

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---