RE: SV: RE: ISA server and open ALL outgoing IP traffic , ho w ?

• From: "Mathews, Todd L Mr HQ INSCOM" <tlmathe@xxxxxxxxxxxxxxxxxxxxxxx>
• To: "'[ISAserver.org Discussion List]'" <isalist@xxxxxxxxxxxxx>
• Date: Mon, 3 Dec 2001 10:20:42 -0500

Oooops. The forwarding filter is for the Symantec Enterprise FireWall.
Running ISA for evaluation right now... Sorry

-----Original Message-----
From: Jesper Vedholm Hansen [mailto:jesper.hansen@xxxxxxx] 
Sent: Monday, December 03, 2001 10:09 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] SV: RE: ISA server and open ALL outgoing IP traffic, ho w
?


http://www.ISAserver.org


Hi and thanx for the answer, but..

"forwarding filter" Where do you set that ?

According to MS Support: "the all ip traffic" only is the protocols defined
in protocols definitions...

Where do you download the tcpdump utility?

Best regards
Jesper

-----Oprindelig meddelelse-----
Fra: Mathews, Todd L Mr HQ INSCOM [mailto:tlmathe@xxxxxxxxxxxxxxxxxxxxxxx]
Sendt: 3. december 2001 16:07
Til: [ISAserver.org Discussion List]
Emne: [isalist] RE: ISA server and open ALL outgoing IP traffic, how ?


http://www.ISAserver.org


If you use a forwarding filter and allow "ALL" from whatever network entity
to *universe or whatever as far as I know it lets everything out. I've had
to use this a couple of times along with the tcpdump to find out exactly
what IP, TCP, UDP, ICMP  protocols were being used. Nothing will be logged
of course, is the only bad thing. So to see anything you have to use the
tcpdump. Todd

-----Original Message-----
From: Jesper Vedholm Hansen [mailto:jesper.hansen@xxxxxxx] 
Sent: Monday, December 03, 2001 9:07 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] ISA server and open ALL outgoing IP traffic, how ?


http://www.ISAserver.org


Hi

Does any of you have a solution to open for ALL outgoing IP traffic ?

When you set the allow all ip traffic on outgoing web request in a "protocol
rule" the "allow all IP traffic" is ONLY the protocols defined in the
protocol definitions, anyone have a workaround ?

The problem is that i have users who need access to difrent Java applets
which run on difrent ports, and I dont want to manually create a protocol
definition for each of these ports (I typically dont know these port
numbers)

Best regards
Jesper

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tlmathe@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jesper.hansen@xxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tlmathe@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')

Other related posts:

• » SV: RE: ISA server and open ALL outgoing IP traffic, ho w ?
• » RE: SV: RE: ISA server and open ALL outgoing IP traffic , ho w ?

1. Home
2. isalist
3. Archive
4. 12-2001

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---