RE: Terminal Service Port Change?

  • From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Mon, 11 Apr 2005 09:54:10 -0700

Andrew,

 

This is incorrect - there is no way to authenticate server publishing.

Any authentication for server publishing rests solely on the published
server.

 

-------------------------------------------------------

   Jim Harrison

   MCP(NT4, W2K), A+, Network+, PCG

   http://isaserver.org/Jim_Harrison/
<http://isaserver.org/Jim_Harrison/> 

   http://isatools.org <http://isatools.org/> 

   Read the help / books / articles!

-------------------------------------------------------

 

________________________________

From: Andrew English [mailto:andrew@xxxxxxxxxxxxxxxxxxxxxx] 
Sent: Monday, April 11, 2005 08:51
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Terminal Service Port Change?

 

http://www.ISAserver.org

Steve, 

 

If you don't give your users TS access how is it any security issue on
your LAN? If you wanted to get tight you could always require ISA
authentication before allowing the user to RDP into the network. 

 

Andrew

 

 

________________________________

From: Steve Moffat [mailto:steve@xxxxxxxxxx] 
Sent: Monday, April 11, 2005 12:21 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Terminal Service Port Change?

 

http://www.ISAserver.org

Security by obscurity Andrew.

 

S

 

________________________________

From: Andrew English [mailto:andrew@xxxxxxxxxxxxxxxxxxxxxx] 
Sent: Monday, April 11, 2005 12:10 PM
To: ISA Mailing List
Subject: [isalist] RE: Terminal Service Port Change?

http://www.ISAserver.org

Steve, 

 

Why would you bother changing TS or RDP's internal port if you are using
ISA server? All you have to do is tell ISA once you have created the
rule to only accept RDP/TS requests on port number blah. That way people
on the outside have to put rdp.domain.com:Newport when they connect from
the outside. ISA talks to the server internally on 3389. 

 

Andrew

 

 

________________________________

From: SteveC [mailto:stevec@xxxxxxxxxxx] 
Sent: Monday, April 11, 2005 10:58 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Terminal Service Port Change?

 

http://www.ISAserver.org
  ISA 2004/EE on Win2K3.   
   
   Right now Terminal Server port 3389 traffic from the internal LAN
space is   
   allowed. I would like to change my Terminal Server port to a high
(unpublished)   
   port number and make that port available for external and internal
traffic. I   
   know how to make the Registry change to move the port. I don't
understand how   
   to tell ISA 2004 to make the port available - with ISA 2000 I'd play
with   
   Packet Filters, but with 2004 I am kind of lost.  Help?  
   
   Thanks.   ------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
andrew@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
isalist@xxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

 

--
<http://www.atomic9.net/public> http://www.atomic9.net/public

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
andrew@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

________________________________

The haggis is unusual in that it is neither consistently nocturnal nor
diurnal, but instead is active at dawn and dusk (crepuscular), with
occasional forays forth during the day and night. 

________________________________



All mail to and from this domain is GFI-scanned.

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 04-2005