Re: ISA... block incoming from certain IPs

Tech-Archive recommends: Fix windows errors by optimizing your registry

Hello Teneo,

Thank you for your reply.

Please understand that all outbound traffic means all the traffic through
the ISA server. Since you choose External network for the From option,
actually the rule applies to the inbound traffic.

I would like to confirm that after creating the rule, did you click the
Apply button in ISA management?

In addition, I suggest you move this rule to the top of the list.

After that, please check if it works.

If it still does not work, would you please let me know in which log you
saw the IP addresses?

Best regards,

Manfred Zhuang(MSFT)
Microsoft Online Newsgroup Support

Get Secure! - www.microsoft.com/security

=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.
=====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| From: "Teneo" <not@xxxxxxxx>
| References: <#Ilx56ZXIHA.1132@xxxxxxxxxxxxxxxxxxxx>
<yVM#pknXIHA.7844@xxxxxxxxxxxxxxxxxxxxxx>
| Subject: Re: ISA... block incoming from certain IPs
| Date: Thu, 24 Jan 2008 12:09:19 -0000
| Lines: 112
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2900.3138
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198
| X-RFC2646: Format=Flowed; Original
| Message-ID: <#xbY0HoXIHA.1164@xxxxxxxxxxxxxxxxxxxx>
| Newsgroups: microsoft.public.windows.server.sbs
| NNTP-Posting-Host: mail.sxcomputers.co.uk 217.37.113.169
| Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP02.phx.gbl
| Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:88399
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Hi Manfred, many thanks for the step by step guide...
|
| I believe this was the route I was taking but as mentioned in your step
8, '
| All outbound Traffic ' this is what confused me, I was looking for
incoming
| traffic...
|
| I will try and see if it works.
|
| Thanks Again...
|
|
| "Manfred Zhuang [MSFT]" <v-mzhuan@xxxxxxxxxxxxxxxxxxxx> wrote in message
| news:yVM%23pknXIHA.7844@xxxxxxxxxxxxxxxxxxxxxxxxx
| > Hello Teneo,
| >
| > Thank you for posting here.
| >
| > From your post, I understand that you would like to block certain IP
| > addresses from connecting to the SBS server.
| >
| > We may create a deny rule to block them:
| >
| > 1. Log on to the computer that is running ISA Server 2004 by using an
| > account that has administrative permissions.
| > 2. Click Start, point to All Programs, point to Microsoft ISA Server,
and
| > then click ISA Server Management.
| > 3. In the left pane of the ISA Server Management console, expand
| > ServerName.
| >
| > 4. Click Firewall Policy.
| > 5. Click the Tasks tab in the task pane, and then click Create New
Access
| > Rule.
| > 6. On the Welcome to the New Access Rule Wizard page, enter the name for
| > the rule in the Access Rule name box, and then click Next.
| > 7. On the Rule Action page, click Deny, and then click Next.
| > 8. On the Protocols page, Select All outbound traffic.
| > 9. Click Add, click New-->Address Range and add the IP address you would
| > like to block.
| > 10. Add Internal as the destination.
| > 11. Choose All Users.
| > 12. Click Finish.
| >
| > Please try the above steps at your earliest convenience. If you have any
| > concern, please feel free to let me know.
| >
| > Best regards,
| >
| > Manfred Zhuang(MSFT)
| > Microsoft Online Newsgroup Support
| >
| > Get Secure! - www.microsoft.com/security
| >
| > =====================================================
| > This newsgroup only focuses on SBS technical issues. If you have issues
| > regarding other Microsoft products, you'd better post in the
corresponding
| > newsgroups so that they can be resolved in an efficient and timely
manner.
| > You can locate the newsgroup here:
| > http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
| >
| > When opening a new thread via the web interface, we recommend you check
| > the
| > "Notify me of replies" box to receive e-mail notifications when there
are
| > any updates in your thread. When responding to posts via your
newsreader,
| > please "Reply to Group" so that others may learn and benefit from your
| > issue.
| >
| > Microsoft engineers can only focus on one issue per thread. Although we
| > provide other information for your reference, we recommend you post
| > different incidents in different threads to keep the thread clean. In
| > doing
| > so, it will ensure your issues are resolved in a timely manner.
| >
| > For urgent issues, you may want to contact Microsoft CSS directly.
Please
| > check http://support.microsoft.com for regional support phone numbers.
| >
| > Any input or comments in this thread are highly appreciated.
| > =====================================================
| >
| > This posting is provided "AS IS" with no warranties, and confers no
| > rights.
| > --------------------
| > | From: "Teneo" <not@xxxxxxxx>
| > | Subject: ISA... block incoming from certain IPs
| > | Date: Wed, 23 Jan 2008 09:02:45 -0000
| > | Lines: 9
| > | X-Priority: 3
| > | X-MSMail-Priority: Normal
| > | X-Newsreader: Microsoft Outlook Express 6.00.2900.3138
| > | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198
| > | X-RFC2646: Format=Flowed; Original
| > | Message-ID: <#Ilx56ZXIHA.1132@xxxxxxxxxxxxxxxxxxxx>
| > | Newsgroups: microsoft.public.windows.server.sbs
| > | NNTP-Posting-Host: mail.sxcomputers.co.uk 217.37.113.169
| > | Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP06.phx.gbl
| > | Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:88162
| > | X-Tomcat-NG: microsoft.public.windows.server.sbs
| > |
| > | Hi
| > |
| > | Anyone know how to block certain IPs from connecting to my SBS
server? I
| > see
| > | and get notified about attempts in my security logs and this gives the
| > IP. I
| > | would then like to block this IP from connecting.
| > |
| > | TIA
| > |
| > |
| > |
| >
|
|
|

.

Quantcast