Use a different name, something like SSL-8443. -----Original Message----- From: Ruba Al Omari [mailto:romari@xxxxxxxxxxxxxxxxx] Sent: Monday, April 04, 2005 1:44 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: SSL 8443, http://www.ISAserver.org Thanks Jim, D:\>cscript isa_tpr.js /show Microsoft (R) Windows Script Host Version 5.6 Copyright (C) Microsoft Corporation 1996-2001. All rights reserved. This is your current Tunnel Port Range list: NNTP (single port): 563 SSL (single port): 443 D:\> If I try to add it with the script like D:\>cscript isa_tpr.js /add SSL 8443 It says SSL already exist, I don't want to delete the SSL and create a new one with port ranges 443-8443 because it will include all the ports in between, how should I do it? Is there a way to add to the current SSL a dingle port (which is 8443). Thanks, r. ________________________________ From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] Sent: Sunday, April 03, 2005 7:39 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: SSL 8443, http://www.ISAserver.org http://isatools.org/isa_tpr.js Run it as 'cscript isa_tpr.js /?' for instructions ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ <http://isaserver.org/Jim_Harrison/> http://isatools.org <http://isatools.org/> Read the help / books / articles! ------------------------------------------------------- ________________________________ From: Ruba Al Omari [mailto:romari@xxxxxxxxxxxxxxxxx] Sent: Sunday, April 03, 2005 04:08 To: [ISAserver.org Discussion List] Subject: [isalist] SSL 8443, http://www.ISAserver.org Hi, I have a user who needs to access a site that publish their SSL through 8443. I added a custom protocol TCP Outbound port 8443, and created a rule to allow that user to use this protocol. The user still gets the same error (your isa server is not configured to allow SSL through 8443), the logging shows me that the traffic was denied because of the rule (Allow_SSL_8443) which is the rule created to allow the traffic. I edited the rule and specifically set the computer with the IP from which the user tries to get to the site and said allow all users from this machine, but still no difference. How I should I set it up? Thanks, r. ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: romari@xxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned. All mail to and from this domain is GFI-scanned.