Ports needed for ISA 2004 (DMZ)?

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: "Magoo" <magoo-nospam@xxxxxxxxxxx>
Date: Mon, 9 May 2005 07:22:13 -0700

I have two ISA 2004 Enterprise boxes configured as NLB integrated (DMZ).
In my external DNS servers, I specify the virtual IP address = 10.1.1.1 =
webmail.mycompany.com

ISA 2004->OWA was working prior to a network maintenance. Now it doesn't
work anymore.

In the PIX firewall I have an entry that looks like:
permit tcp any host 10.1.1.1 eq www

permit tcp any host 10.1.1.1. eq 443

However I try to hit https://webmail.mycompany.com from the outside and that
doesn't work (I get page cannot be displayed, DNS error).

In addition to the two ACL's above, which ports should I allow in my
firewall to make this work ?

.

Prev by Date: Client VPN Out and RDP
Next by Date: Re: Login Hotmail
Previous by thread: Client VPN Out and RDP
Next by thread: Re: Ports needed for ISA 2004 (DMZ)?
Index(es):
- Date
- Thread

Relevant Pages

Pix Config for SBS 2003
... I been told to configure the PIX firewall 506E with the ... static yourpublicip 192.168.1.1 netmask ... access-list outside_acl_inbound permit gre any host ... access-list outside_acl_inbound permit tcp any host ...
(microsoft.public.windows.server.sbs)
Cisco PIX Config and Win 2k3
... I been told to configure the PIX firewall 506E with the ... static yourpublicip 192.168.1.1 netmask ... access-list outside_acl_inbound permit gre any host ... access-list outside_acl_inbound permit tcp any host ...
(microsoft.public.windows.server.networking)
Re: PIX VPN help.
... have to use to connect to the remote host. ... static 192.168.100.0 192.168.10.0 netmask ... access-list 100 permit tcp any host a.a.a.102 eq ident ... access-group 100 in interface outside ...
(comp.dcom.sys.cisco)
Re: PIX VPN help.
... have to use to connect to the remote host. ... static 192.168.100.0 192.168.10.0 netmask ... access-list 100 permit tcp any host a.a.a.102 eq ident ... access-group 100 in interface outside ...
(comp.dcom.sys.cisco)
Re: PIX VPN help.
... have to use to connect to the remote host. ... static 192.168.100.0 192.168.10.0 netmask ... access-list 100 permit tcp any host a.a.a.102 eq ident ... access-group 100 in interface outside ...
(comp.dcom.sys.cisco)