RE: HTTP (1024 - 65535) ????

  • From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Fri, 18 Mar 2005 07:43:27 -0800

Steve is *almost* right.

First of all, DON'T create "allow all" rules (that's what you're trying to 
define here).

I promise; you will regret it.

Second, you need to scan the logs protocol=HTTPS and action = denied.

You'll see the ports that need to be accommodated in there.

If you see "443", then it's not a port-specific problem.

 

http://isatools.org/isa_tpr.js will help you once you sort out the odd SSL 
ports being used,

 

 

-------------------------------------------------------

   Jim Harrison

   MCP(NT4, W2K), A+, Network+, PCG

   http://isaserver.org/Jim_Harrison/ <http://isaserver.org/Jim_Harrison/> 

   http://isatools.org <http://isatools.org/> 

   Read the help / books / articles!

-------------------------------------------------------

 

________________________________

From: Darko Kljajic [mailto:darko@xxxxxxxxxxxxxxxx] 
Sent: Friday, March 18, 2005 06:39
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: HTTP (1024 - 65535) ????

 

http://www.ISAserver.org

I work in a bank where our clients want to access to Webmail on Internet that 
works on various ports.

 

How do I acomplish that?

 

I set access rule that permit traffic from port 1024 to port 65535 + apply HTTP 
Filter. That's mean that only HTTP traffic can pass trough this ports????????

 

Darko Kljajić

Administrator for operating systems

IT Department

tel: +381 11 201 1567

mob: +381 64 811 1655

e-mail: darko@xxxxxxxxxxxxxxxx <mailto:darko@xxxxxxxxxxxxxxxx> 

===========================

Delta Banka A.D.

Milentija Popovića 7b, Belgrade

Serbia & Montenegro

site: www.deltabanka.co.yu <http://www.deltabanka.co.yu/> 

===========================

 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as: 
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 


All mail to and from this domain is GFI-scanned.

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 03-2005