Re: Beginner problems

"Cristian Baldo" <cristian.baldo@xxxxxxxxxxx> wrote in message
news:ebeM%23Hv5FHA.444@xxxxxxxxxxxxxxxxxxxxxxx
> Thanks for your help, but i still have the problem:
> I defined the following rule: Allow-All protocols-Internal to
> External-Users_Group, where Users_Group contains five users account of the
> domain.

Be careful with users requiring authentication (rules that specify certain
users/groups rather than "All Users"). For such rules to work the
corresponding traffic needs to be properly authenticated, in other words ISA
has to know who is generating that traffic. For web protocols (HTTP, HTTPS,
FTP, Gopher) this is usually not a problem as those are authenticated
through the web proxy. But for other protocols, you also have to install the
Firewall Client on the users' workstations, which will perform transparent
authentication in the background.

> The DNS server of the hosts (of this five users) is the ISA
> internal IP, but:
> * Which must be the gateway of the hosts?

It depends. If you run the firewall client on your workstations you don't
absolutely have to configure a default gateway (although it would be a good
idea to do so anyway - read on for that).

If you don't run the FWC then your clients will be SNAT (SecureNAT) clients
and they need to have ISA in their routing path, for a basic network this
means that you have to set the default gateway to the internal IP address of
your ISA server.

> * In which port runs the ISA server? (this is to configure the proxy
> server in the browser of the five hosts)

By default the web proxy service runs on port 8080. You can actually confirm
that in the configuration of the "Internal" network object, and you can also
change the port there if you need. By the way, this is basic information
that should be obvious if you took the time to read the ISA product manual
at least once. I still responded to your question but be aware that if
you're serious about ISA you need to do your own research at times.

Virgil


.

Relevant Pages

  • Re: REPOST: Firewall Client Disconnects
    ... -> Define Connection Limits ... Subject: Firewall Client disconnects? ... reported it was unable to connect to the ISA server. ... The Firewall Client is for ISA 2004. ...
    (microsoft.public.windows.server.sbs)
  • REPOST: Firewall Client Disconnects
    ... Subject: Firewall Client disconnects? ... reported it was unable to connect to the ISA server. ... The Firewall Client is for ISA 2004. ... This posting is provided "AS IS" with no warranties, ...
    (microsoft.public.windows.server.sbs)
  • Re: REPOST: Firewall Client Disconnects
    ... >> Subject: Firewall Client disconnects? ... >> reported it was unable to connect to the ISA server. ... >> Thank you for posting to the SBS Newsgroup. ...
    (microsoft.public.windows.server.sbs)
  • Re: REPOST: Firewall Client Disconnects
    ... >> Subject: Firewall Client disconnects? ... >> reported it was unable to connect to the ISA server. ... >> Thank you for posting to the SBS Newsgroup. ...
    (microsoft.public.windows.server.sbs)
  • Re: Firewall Client disconnects?
    ... it's connection with the ISA server. ... ISA 2004 Firewall Client, ISA 2004 Server ... Also in the Firewall Client icon, make sure that you have typed the ...
    (microsoft.public.windows.server.sbs)