Re: FTP Access ISA Server

From: A Klimkin (aklimkin)
Date: 07/29/04

• Next message: A Klimkin: "Re: Publish server on intenal net"
• Previous message: A Klimkin: "Re: adobe acrobat web capture"
• In reply to: TimSoutherland: "FTP Access ISA Server"
• Messages sorted by: [ date ] [ thread ]

---

Date: Thu, 29 Jul 2004 15:43:04 +0400

Outbound applications access from the ISA server itself is controlled by IP
packet filters.
To allow the ISA server to download some stuff via FTP protocol, configure
the following packet filters

For PASV FTP mode (one filter):
IP Protocol: TCP
Direction: Outbound
Local port: Dynamic
Remote port: All

For PORT FTP mode (two filters):
IP Protocol: TCP
Direction: Outbound
Local port: Dynamic
Remote port: Fixed port 21
- AND -
IP Protocol: TCP
Direction: Inbound
Local port: Dynamic
Remote port: Fixed port 20

The above configuration changes will cause some security implications, of
course. Please read this to get the exhaustive details:
http://www.isaserver.org/articles/How_the_FTP_protocol_Challenges_Firewall_Security.html

Regards,
Andrew

"TimSoutherland" <TimSoutherland@discussions.microsoft.com> wrote in message
news:4857496B-AF49-4B6F-B144-C2602074C673@microsoft.com...
> I am running ISA Server 2000 on Server 2003. My antivirus is InnoculateIT
from Computer Associates. My virus definitions come in via a FTP download.
I can't get the virus definitions to download on this box. I have other
servers that are running only Server 2003 and the virus definitions download
correctly.
>
> Thanks in Advance!
> Tim Southerland
> Technology Coordinator
> Hartselle City Schools

---

• Next message: A Klimkin: "Re: Publish server on intenal net"
• Previous message: A Klimkin: "Re: adobe acrobat web capture"
• In reply to: TimSoutherland: "FTP Access ISA Server"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: What does this indicate? (LONG) ... FTP File Transfer Protocol A client-server ... protocol which allows a user on one computer to transfer files to and from ... > The firewall has blocked Internet access to your computer (TCP Port ... (comp.security.firewalls) Re: Ports and Replication in SQL Server 2000 ... If you don't use FTP SQL will download the snapshot from the default folder ... > different port to download the initial snapshot files. ... (microsoft.public.sqlserver.replication) Re: ISA 2004 and FTP problems - Problem Fixed after much trial and error ... FTP application filter, without adding port 20 to the protocol ... originates from port 20 on server, and goes to a high-port on the client... ... (microsoft.public.isaserver) Re: ssh / scp to server from vb6 ? ... being able to use secure FTP port, which I think is the port 22 above, ... commands are available for the SCP protocol. ... "Jim Carlock" wrote in message ... FTP is kinda slow at doing transfers and everything about is plain ... (microsoft.public.vb.general.discussion) Re: problem with Zonealarm and WS-FTP ... Try setting WS FTP to use "passive" mode and see if that solves it.... ... FTP is an old protocol and is notorious for not playing well with ... FTP actually runs on 2 ports, ... > Since I switched to Zonealarm I have a problem with using WS-FTP. ... (comp.security.firewalls)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > ISA  > microsoft.public.isa  > 2004-07