Andrew, This is incorrect - there is no way to authenticate server publishing. Any authentication for server publishing rests solely on the published server. ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ <http://isaserver.org/Jim_Harrison/> http://isatools.org <http://isatools.org/> Read the help / books / articles! ------------------------------------------------------- ________________________________ From: Andrew English [mailto:andrew@xxxxxxxxxxxxxxxxxxxxxx] Sent: Monday, April 11, 2005 08:51 To: [ISAserver.org Discussion List] Subject: [isalist] RE: Terminal Service Port Change? http://www.ISAserver.org Steve, If you don't give your users TS access how is it any security issue on your LAN? If you wanted to get tight you could always require ISA authentication before allowing the user to RDP into the network. Andrew ________________________________ From: Steve Moffat [mailto:steve@xxxxxxxxxx] Sent: Monday, April 11, 2005 12:21 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Terminal Service Port Change? http://www.ISAserver.org Security by obscurity Andrew. S ________________________________ From: Andrew English [mailto:andrew@xxxxxxxxxxxxxxxxxxxxxx] Sent: Monday, April 11, 2005 12:10 PM To: ISA Mailing List Subject: [isalist] RE: Terminal Service Port Change? http://www.ISAserver.org Steve, Why would you bother changing TS or RDP's internal port if you are using ISA server? All you have to do is tell ISA once you have created the rule to only accept RDP/TS requests on port number blah. That way people on the outside have to put rdp.domain.com:Newport when they connect from the outside. ISA talks to the server internally on 3389. Andrew ________________________________ From: SteveC [mailto:stevec@xxxxxxxxxxx] Sent: Monday, April 11, 2005 10:58 AM To: [ISAserver.org Discussion List] Subject: [isalist] Terminal Service Port Change? http://www.ISAserver.org ISA 2004/EE on Win2K3. Right now Terminal Server port 3389 traffic from the internal LAN space is allowed. I would like to change my Terminal Server port to a high (unpublished) port number and make that port available for external and internal traffic. I know how to make the Registry change to move the port. I don't understand how to tell ISA 2004 to make the port available - with ISA 2000 I'd play with Packet Filters, but with 2004 I am kind of lost. Help? Thanks. ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: andrew@xxxxxxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: isalist@xxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx -- <http://www.atomic9.net/public> http://www.atomic9.net/public ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: andrew@xxxxxxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ________________________________ The haggis is unusual in that it is neither consistently nocturnal nor diurnal, but instead is active at dawn and dusk (crepuscular), with occasional forays forth during the day and night. ________________________________ All mail to and from this domain is GFI-scanned.