Re: Disabling ISA Server 2000

From: "Crina Li" <v-crinal@xxxxxxxxxxxxxxxxxxxx>
Date: Thu, 16 Mar 2006 13:31:12 +0800

Hi Radunmore,

Thank you for posting in SBS newsgroup.

From the description, I understand the issue to be: you want to active Adobe

Reader. If I have misunderstood your concerns, please do not hesitate to let
me know.

As I know, to do so, you can contact Adobe to see what ports need to be
opened to allow the traffic and then you can open the ports on ISA 2000

In SBS 2003, you should configure ISA 2000 to open the ports you want. You
can do as following:

If you require outbound port (for example: 6881) to be opened

============================

1. Open ISA Management console.

2. Expand to Servers and Arrays\ServerName\Access Policies\IP Packet
Filters.

3. Right click on IP Packet Filters and choose New->Filter.

4. Name the filter as Outbound 6881 and click Next.

5. Choose "Allow packet transmission" and click Next.

6. Choose "Custom" and click Next.

7. On the Filter Settings page, specify the following settings and
click Next:

IP Protocol: TCP

Direction: Outbound

Local port: All ports

Remote port: Fixed port

Port number: 6881

8. Click Next. Click Next. Click Finish.

9. Go to Monitoring\Services and restart the Firewall service.

If you require inbound port (for example: 6881) to be opened

============================

1. Open ISA Management console.

2. Expand to Servers and Arrays\ServerName\Access Policies\IP Packet
Filters.

3. Right click on IP Packet Filters and choose New->Filter.

4. Name the filter as Inbound 6881and click Next.

5. Choose "Allow packet transmission" and click Next.

6. Choose "Custom" and click Next.

7. On the Filter Settings page, specify the following settings and
click Next:

IP Protocol: TCP

Direction: Inbound

Local port: Fixed port

Port number: 6881

Remote port: All ports

8. Click Next. Click Next. Click Finish.

9. Go to Monitoring\Services and restart the Firewall service.

More information:

295667 How to Allow Third-Party Internet Application Connections Through
ISA Server 2000

http://support.microsoft.com/default.aspx?scid=kb;EN-US;295667

If you have a hardware firewall or router in front of your SBS server, you
should open the ports (inbound or outbound) on it. If you do not know how to
do that you can refer to the hardware manual or contact the vendor. You
should also contact your ISP and check if they use firewall and if so they
should also open the ports.

I appreciate your time and look forward to hearing from you.

Best regards,

Crina Li (MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security

=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.

=====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.

"radunmore" <radunmore.discussions.microsoft.com> wrote in message
news:E457AD34-53DA-4B4F-8E1A-3C8BDE06D152@xxxxxxxxxxxxxxxx

I need to disable ISA Server 2000 SP1 to do a DRM Activation of the Adobe
Reader. Or do anyone know how to activate Adobe reader without disabling
the
firewall.

Prev by Date: Re: can not make client desktop connection
Next by Date: Re: sharing favorites?
Previous by thread: Re: can not make client desktop connection
Next by thread: Re: sharing favorites?
Index(es):
- Date
- Thread

Relevant Pages

RE: Strange replies on closed port
... port should be a RST - not dropping the packet. ... receiving an UDP datagram to a non 'listening' port. ... that message isn't generated by the end host, ... Connecting to a closed Port w/o Firewall: ...
(Pen-Test)
Re: Firewall questions -- what is ...?
... packet payload inspection. ... IDS is not a firewall and does not necessarily protect you. ... port number for a well known service and the destination port is above 1023, ... Firewalls and IDS are prone to frequent false alarms. ...
(microsoft.public.security)
Re: Basic NAT / Firewall Question
... There are two basic types of NAT (Network Address Translation) which you ... NAPT simply maps port numbers to a given address. ... Your firewall will make a note from where the connection was ... with its own address and then sends this "new" packet out on its local ...
(Security-Basics)
Re: FTP Window of opportunity?
... Your computer sent a SYN packet... ... a SYN/ACK back, ... > well as blocked by the firewall. ... > When I scan with ISS, the FTP port shows up. ...
(Pen-Test)
Re: Firewalls: whats the use?
... >> control the types of ICMP message sent and received. ... Do I really need to implement a firewall just to prevent ICMP? ... packet to crash the OS. ... especially in cases where the packet was destined to a port where no ...
(comp.os.linux.security)