RE: Packet Filter

Thanks Man;

I really appritiate your help.

But i have some confuse, I made the following :-

1. Enable Packet Filter & Enable also Intrusion Detection & IP Routing.
2. Intrusion Detection - Not Enable-.
3. PPTP-Not Enable.


then on the Protocol Rule, I made only one Rule and its allow , ALL
IP-Traffic.

=====================================================

My situation is, I have one Server its hosted outside in USA & this server
is for E-mails, and i am Using Now POP3 Account on MSOUTLOOK.

The Plan Now is changed, and we are going to install Exchange server 2003
and we will install on it POP3 Downloader which is GFI and it will work to
collect the E-mails from Outside & then will distribute them back internally
here to the users.

Actually I install the exchange server on Test Machine and i already install
GFI POP3 Downloader and configured it with the Real IP of MY POP3 Server ,
and the exchange configured to register him self in the DNS -Win2003- and
then the DNS is Configured to use Root Hints to be able to browse the
External Domains as well.

I found that the exchange server its working Perfect without any need to
make any other IP-Packet filter at all , and i am really able to send &
Receive External E-mails from outside.

So My questions is :-

Was i able to let the exchange server to send & Receive External E-mails
because i already make a protocol rule that open every thing and All
Protocols open ?

2- do i need to make any Publish My Exchange server to outside People or
not, as long as all my users while they are in the office they only use the
exchange server only & if they are outside they used to see there E-mails
from Webmail of the Hosted Company , so i think i do not need.

3- is there any way to configure every thing to be behind the ISA server ? i
mean instead of writing the Real IP of POP3 server in the GFI POP3
Downloader, i will only write the internal IP of ISA , and it should work ,
is that possible or not ?

thanks for your reply .


"Medo_in_Egypt" wrote:

> Dear All,
>
> I have something here and i want to understand.
>
> as i understood Packet filter is used to make a control on the Incomeing
> Traffic which is comeing to the ISA server from the external users -
> internet users-.
>
> While the Access Policy which its include ( Protocol Rule, Site contenet
> rule ) , is used to make a control on the outgoing traffic from the ISA
> server which is the Signals of my Users which they are in My LAN - either if
> the users is ( firewall client - Secure NAT Client- WebProxy Client ).
>
> untill now , i think i am in the correct side, is that true ?
>
> -----------------------------
>
> second thing, when iam installing ISA, i am enable the Packet Filter to
> Block the Traffic which is outgoing and incomeing from enter the ISA and get
> out from the ISA server.
>
> I am using Protocol rule to open the Ports in the Packet filter to allow the
> clinets for example to access the internet.
>
> for example, when i am make rule for HTTP, i am make a packet filter to open
> the Port for HTTP only and this Port is open dynamic through Policy, while if
> i made static IP-Packet Filter, i am open special Port for specific resons,
> and this Port will be open always.
>
> ----------------------------------------------------------------------------------------------------------------------------------------
>
> My question is, if i have a Mail server hosted in USA, and i am using SMTP &
> POP3 , is there any way to open the Ports for SMTP & POP3 from using Prtocol
> Rule , rather than Packet filter?
>
> if so, what is the diffrence between them ?
>
> ==============================
>
> second question is:-
>
> on which directions should i made the static Packet filter for SMTP & POP3,
> should it be Outgoing only or, incomeing only , or both direction ?
>
>
> Can any one help please .
>
> Best Regards,
>
.

Relevant Pages

  • Re: RWW not working externally (R2)
    ... I am running ISA 2004, ... Ethernet adapter Server Local Area Connection: ... Set a protocol rule on your ISA Server ...
    (microsoft.public.windows.server.sbs)
  • Re: RWW not working externally (R2)
    ... It should take care of the ISA settings for you. ... The client could not establish a connection to the remote computer. ... Set a protocol rule on your ISA Server ...
    (microsoft.public.windows.server.sbs)
  • Re: RWW not working externally (R2)
    ... Ethernet adapter Server Local Area Connection: ... It should take care of the ISA settings for you. ... Set a protocol rule on your ISA Server ...
    (microsoft.public.windows.server.sbs)
  • Re: Acces to a TCP port to a WS
    ... the ISA server itself, where protocol rules apply to clients. ... the client always initiate the comunication. ... > I have created a protocol definition and a protocol rule using this ... >> I'd check to see if it works without a server publishing rule. ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Packet Filter
    ... Enable Packet Filter & Enable also Intrusion Detection & IP Routing. ... I have one Server its hosted outside in USA & this server ... Actually I install the exchange server on Test Machine and i already install ... 3- is there any way to configure every thing to be behind the ISA server? ...
    (microsoft.public.isa.configuration)