Re: CEICW fails during firewall config, ISA 2004

Still No Luck.. Uninstalled and reinstalled ISA 2004 again, from SBS SP1
Prem CD's. I only have 3 Firewall policies, 1 SBS Protected Networks Access
Rule, 2 SBS Localhost Dhcp Access Rule, Last Default rule = Deny All.

Is there any way to import the SBS Standard Firewall Policies via an XML
file, does it exist?. I looked at the installed XML Templates, but none of
them relate to SBS templates, just the default ISA 2004 templates. I feel
like if I could get the default policies loaded into ISA, the CEICW would
work just fine.

Any help from MS here????

Thanks
Chip

"ChipW" <Chip@xxxxxxxxxxxxxxxxxx> wrote in message
news:%23peh2b4ZFHA.3712@xxxxxxxxxxxxxxxxxxxxxxx
> OK, so I took the plunge and installed SBS SP1 last night (in hindsight I
> should have waited for weekend), all went well until upgrading from ISA
> 2000 to ISA 2004, had to turn off IIS Admin. The CEICW wizard failed
> during the firewall configuration section. I reread Mariette's et. al.
> guide (Thanks for all your efforts guys), ah i thought ISA rule 22,
> deleted it, along with a couple others I thought I didn't need/want
> anymore.... firewall config still fails. I had Inet connection, even with
> ISA2K Clients. Hmmm. BTW I had a screenful of firewall policies in ISA.
> Not leaving well enough alone, I ran a ISA 2004 repair thinking maybe I
> deleted a policy I shouldn't have. I reran CEICW, firewall config still
> failed, and now only half a screen of policies. So I try another tach and
> ran CEICW and turned off firewall (still fails) then run CEICW again to
> turn it back on, still fails. A quick look at ISA now only shows 3
> policies. Now I'm thinking I really screwed things up. I unistalled ISA
> 2004 and reinstalled, thinking that would put things back to default, but
> no...still only 3 policies and no Inet with ISA 2004 clients now
> installed. I had to manually change ISA policy to allow access to Inet.
> Any changes in CEICW for publishing services (VPN, OWA, RDP, etc.) don't
> change after running wizard. Rerunning CEICW now blocks Inet access until
> I manually allow it again. So that's where I'm at, and what I've done
> (right or wrong) I just don't know what to try next. I'm just looking for
> a default, secure installation of ISA 2004 and have external access to
> RWW, OWA, Outlook RPC, etc.
>
> Thanks in advance
> ChipW
>


.

Relevant Pages

  • Re: Changing ISPs
    ... If you are familiar with the firewall, and changing the ip on the external nic, you might get it working with the present ISP. ... I suggest you go first just change the ip address on the SBS external nic to match the settings the new ISP gives you and run the CEICW and get that to work. ... Then install the edge device but leave ISA in place. ... SMTP mail for Exchange will not be held anywhere, so a POP connector will not retrieve it. ...
    (microsoft.public.windows.server.sbs)
  • Re: Blown it up, Reinstalled IIS - buzzards are circling my body!
    ... getting ISA reinstalled would resolve that. ... Rerun CEICW, no go. ... CEICW dies at firewall and email setups. ... Unload IIS and reinstall IIS. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN - what happens now
    ... run CEICW and enable the firewall (which is ISA if you have SBS ...
    (microsoft.public.windows.server.sbs)
  • CEICW fails during firewall config, ISA 2004
    ... to ISA 2004, had to turn off IIS Admin. ... The CEICW wizard failed during the ... a screenful of firewall policies in ISA. ... reran CEICW, firewall config still failed, and now only half a screen of ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN - what happens now
    ... Fec ... run CEICW and enable the firewall (which is ISA if you have SBS ...
    (microsoft.public.windows.server.sbs)