Re: Packet Filter
- From: "Medo_in_Egypt" <MedoinEgypt@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 22 Aug 2005 23:41:37 -0700
Thanks Stefan;
I really appritiate your help.
But i have some confuse, I made the following :-
1. Enable Packet Filter & Enable also Intrusion Detection & IP Routing.
2. Intrusion Detection - Not Enable-.
3. PPTP-Not Enable.
then on the Protocol Rule, I made only one Rule and its allow , ALL
IP-Traffic.
=====================================================
My situation is, I have one Server its hosted outside in USA & this server
is for E-mails, and i am Using Now POP3 Account on MSOUTLOOK.
The Plan Now is changed, and we are going to install Exchange server 2003
and we will install on it POP3 Downloader which is GFI and it will work to
collect the E-mails from Outside & then will distribute them back internally
here to the users.
Actually I install the exchange server on Test Machine and i already install
GFI POP3 Downloader and configured it with the Real IP of MY POP3 Server ,
and the exchange configured to register him self in the DNS -Win2003- and
then the DNS is Configured to use Root Hints to be able to browse the
External Domains as well.
I found that the exchange server its working Perfect without any need to
make any other IP-Packet filter at all , and i am really able to send &
Receive External E-mails from outside.
So My questions is :-
Was i able to let the exchange server to send & Receive External E-mails
because i already make a protocol rule that open every thing and All
Protocols open ?
2- do i need to make any Publish My Exchange server to outside People or
not, as long as all my users while they are in the office they only use the
exchange server only & if they are outside they used to see there E-mails
from Webmail of the Hosted Company , so i think i do not need.
3- is there any way to configure every thing to be behind the ISA server ? i
mean instead of writing the Real IP of POP3 server in the GFI POP3
Downloader, i will only write the internal IP of ISA , and it should work ,
is that possible or not ?
thanks for your reply .
==========================================================================================================
"Phillip Windell" wrote:
> Yes,..if I undersatnd the question properly,..yes that is correct (if this
> is ISA2000).
> Packet Filters are for Application that run on the ISA Box itself.
>
> If this is ISA2004,..everything is done by Access Rules and System Policy.
> See the Rule Processing Link in my signature.
>
> --
> Phillip Windell [MCP, MVP, CCNA]
> www.wandtv.com
> -----------------------------------------------------
> Understanding the ISA 2004 Access Rule Processing
> http://www.isaserver.org/articles/ISA2004_AccessRules.html
>
> Microsoft Internet Security & Acceleration Server: Guidance
> http://www.microsoft.com/isaserver/techinfo/Guidance/2004.asp
> http://www.microsoft.com/isaserver/techinfo/Guidance/2000.asp
>
> Microsoft Internet Security & Acceleration Server: Partners
> http://www.microsoft.com/isaserver/partners/default.asp
> -----------------------------------------------------
>
>
>
>
> "Medo_in_Egypt" <MedoinEgypt@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:9D35BBDC-C0B9-4DBA-B407-3BC504C456AD@xxxxxxxxxxxxxxxx
> > Dear All,
> >
> > I have something here and i want to understand.
> >
> > as i understood Packet filter is used to make a control on the Incomeing
> > Traffic which is comeing to the ISA server from the external users -
> > internet users-.
> >
> > While the Access Policy which its include ( Protocol Rule, Site contenet
> > rule ) , is used to make a control on the outgoing traffic from the ISA
> > server which is the Signals of my Users which they are in My LAN - either
> if
> > the users is ( firewall client - Secure NAT Client- WebProxy Client ).
> >
> > untill now , i think i am in the correct side, is that true ?
> >
> > -----------------------------
> >
> > second thing, when iam installing ISA, i am enable the Packet Filter to
> > Block the Traffic which is outgoing and incomeing from enter the ISA and
> get
> > out from the ISA server.
> >
> > I am using Protocol rule to open the Ports in the Packet filter to allow
> the
> > clinets for example to access the internet.
> >
> > for example, when i am make rule for HTTP, i am make a packet filter to
> open
> > the Port for HTTP only and this Port is open dynamic through Policy, while
> if
> > i made static IP-Packet Filter, i am open special Port for specific
> resons,
> > and this Port will be open always.
> >
> > --------------------------------------------------------------------------
> --------------------------------------------------------------
> >
> > My question is, if i have a Mail server hosted in USA, and i am using SMTP
> &
> > POP3 , is there any way to open the Ports for SMTP & POP3 from using
> Prtocol
> > Rule , rather than Packet filter?
> >
> > if so, what is the diffrence between them ?
> >
> > ==============================
> >
> > second question is:-
> >
> > on which directions should i made the static Packet filter for SMTP &
> POP3,
> > should it be Outgoing only or, incomeing only , or both direction ?
> >
> >
> > Can any one help please .
> >
> > Best Regards,
> >
>
>
>
.
- References:
- Packet Filter
- From: Medo_in_Egypt
- Packet Filter
- Prev by Date: RE: Packet Filter
- Next by Date: Re: ISA Port Forwarding and Server Publishing
- Previous by thread: RE: Packet Filter
- Next by thread: Re: Packet Filter
- Index(es):
Relevant Pages
|
Loading
