Re: FTP access via ISA(proxy)

From: Phillip Windell (_at_.)
Date: 07/28/04 

Date: Wed, 28 Jul 2004 15:44:41 -0500

"David Barnes" <david@nospam-bitsolve.com> wrote in message
news:OITNc.10351$046.104249463@news-text.cableinet.net...
> I should of also said an objective was KISS. and the firewall client does
> add complexity, over and above this.

I understand. It is the same here. I only run it on a few machines that have
a reason for it to be there.

> I still can't get FTP(read) access via the proxy service..

I'm not sure about that. Maybe you could dig around on www.isaserver.org and
see if you run across something you don't have correct. There are two
different FTP Definitions, did you pick the right one for the rule? The
regular "FTP" is not it, you need the one that says "FTP Download only".

Here's what mine is like. I actually have more than I am showing, but these
are what apply to you as I understand it:
---------------------------------------------------
Site and Content Rule:
    General: Enabled
    Destinations: All Destinations
    Schedule: Always
    Action: Allowed
    Applies to: [I assigned two different user groups]
    HTTP Content: All Content Groups

Protocol Rule #1:
    General: Title "Standard Web Proxy", Enabled
    Action: Allowed
    Protocol: Selected Protocols
                            FTP Download only
                            Gopher
                            HTTP
                            HTTPS
    Schedule: Always
    Applies to: [Same groups as Site and Content Rule]
------------------------------------------------------

I then have two other Protocol rules for regular FTP (not web based FTP),
and another Rule for NNTP (News groups)

-------------------------------------------------------
Protocol Rule #2:
    General: Title "FTP Clients", Enabled
    Action: Allowed
    Protocol: Selected Protocols
                            FTP
    Schedule: Always
    Applies to: [Same groups as Site and Content Rule]

Protocol Rule #3:
    General: Title "NewsReader (NNTP)", Enabled
    Action: Allowed
    Protocol: Selected Protocols
                            NNTP
                            NNTPS
    Schedule: Always
    Applies to: [Same groups as Site and Content Rule]
--------------------------------------------------------- 

-- 
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com

Relevant Pages

  • Re: Allowing FTP access for clients
    ... If you have the ftp protocol definitions then when you check the rule ... No clients can access any FTP sites but the server can. ... Protocol Rule to allow the clients access, so we added one to Allow - ...
    (microsoft.public.backoffice.smallbiz2000)
  • RE: SBS2K3 Prem Symantec Security Gaeway
    ... Programs, point to Microsoft ISA Server, and then click ISA Management. ... locate the Protocol Definitions container. ... In the Port number box, ... In the Protocol rule name box, type a name for the rule (for example, ...
    (microsoft.public.windows.server.sbs)
  • RE: SBS2K3 Prem Symantec Security Gaeway
    ... Programs, point to Microsoft ISA Server, and then click ISA Management. ... locate the Protocol Definitions container. ... click UDP. ... In the Protocol rule name box, type a name for the rule (for example, ...
    (microsoft.public.windows.server.sbs)
  • Re: MSN Messenger question
    ... I can't find the file mspclnt.ini on the client pc as mentioned in step 2. ... > 1) Add the following protocol rule and protocol definition for File ... > MSN MESSENGER SETTINGS FOR ISA2000 ...
    (microsoft.public.isaserver)
  • Re: FTP access via ISA(proxy)
    ... regular "FTP" is not it, you need the one that says "FTP Download only". ... Schedule: Always ... Protocol Rule #1: ... Protocol: Selected Protocols ...
    (microsoft.public.backoffice.smallbiz)
Loading