Sure I will click on Tom's Open Port button as soon as he patents it :). But seriously I convinced my mgmt team to only open about 50 ports. This even looks taunting task let alone the server performance. I am sure ISA must have a solution for this. Troy Radtke <TRadtke@xxxxxxxxxxxx> wrote:http://www.ISAserver.org Click on Tom's Open Ports (tm) button.... I can't even believe that you'd think about making 20k rules...... Every single packet would have to be check by each rule every time..... -----Original Message----- From: tim S [mailto:tim724342@xxxxxxxxx] Sent: Friday, November 12, 2004 10:54 AM To: [ISAserver.org Discussion List] Subject: [isalist] Need help with opening ports 5000-6000 for inbound access http://www.ISAserver.org I have a requirement for an internal system behind ISA firewall. I need to open ports 4500 through 5500 for TCP/UDP inbound access and map them to the internal 192.168.0.10 IP number (internal system). I don't want to open IP packet filters. Just want to publish them. Brood force method: ============== I know I can create protocol definitions for ports 5000 through 6000 TCP and 5000 through 6000 UDP. Then create server publishing rule for each definition for a total of 20,000 rules. I know this is insane. I am not even sure it is doable considering the server performance. Is there any way accomplish this with minimum effort? Thank you TS __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tradtke@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tim724342@xxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx --------------------------------- Do you Yahoo!? Check out the new Yahoo! Front Page. www.yahoo.com