ISA 2004 Publishing Rules
From: NIC Student (nospam_at_nospam.land)
Date: 12/30/04
- Previous message: BigBird: "Publish many services to default IP address on external interface"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 30 Dec 2004 09:19:43 -0800
Hi,
I have a mystery that is driving me crazy. Hopefully someone can give me a
hand.
Situation:
ISA2004 isolates several secure domain servers from the rest of our network.
192.168.1.62=ISA external address on our main subnet.
10.150.0.1=ISA internal address on protected subnet
10.150.0.4=Protected server
We use two ports for our application: TCP 1240 and TCP 1188.
I created two server publishing rules, one for each. An example:
Listener-external ip 192.168.1.62, protocol tcp 1240 inbound, from anywhere,
to 10.150.0.4, schedule always.
I run the FWENGMON.EXE and it shows creation objects: Source 0.0.0.0 Dest
10.150.0.4:1240. From that, I assume that ISA is listening.
I turn on monitoring>logging and begin logging:
clientip 192.168.1.12, dest ip 192.168.1.62, tcp 1240, unidentified ip
traffic, denied connection, default rule, source net external, dest net
localhost.
My network rule says to route external network to internal network (no nat).
I have no other rules that deny tcp 1240.
Any help is appreciated!!
-- Scott Baldridge
- Previous message: BigBird: "Publish many services to default IP address on external interface"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
