FTP server publishing
From: norwich5 (norwich5_at_discussions.microsoft.com)
Date: 11/30/04
- Next message: joe_at_ics-associates.com: "RPC Over HTTP ISA 2004 Exchange 2003"
- Previous message: James P.: "Rule for Firewall client"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 30 Nov 2004 11:23:01 -0800
I have ISA2004 in a back to back firewall config. ISA external is my
perimeter network on the back firewall. I am able to publish my webserver
sites with no problem. I have run the Server publishing wizard to publish
FTP on the same server as the web sites are published. The ftp site worked
fine before the introduction of ISA. The monitoring logs show the initial
connection (client to the external address/port 21 on the ISA external NIC)
is denied due to the default rule. I have tried setting the From tab to
anywhere and the Networks tab to all networks with no difference.
If instead of the publishing rule I set an access rule to permit FTP and FTP
server FROM the external network, local host, perimeter addresses TO the
internal ftp server, local host, internal network the connection is no longer
denied but instead fails.
I notice in the logs that HTTP connections through ISA typically begin with
an initiation that has no rule associated with it. Basically, the connection
to port 80 on the external NIC of ISA is initiated and then connections to
the internal address of the published server begin. The FTP connection never
gets initiated. I suspect this may be through some System rule, though I
don't know why there wouldn't be one to allow ftp access as well.
Any help is greatly appreciated.
Thanks,
- Next message: joe_at_ics-associates.com: "RPC Over HTTP ISA 2004 Exchange 2003"
- Previous message: James P.: "Rule for Firewall client"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
