Solved

ISA 2000 dynamic ports

Posted on 2004-08-31
3
628 Views
Last Modified: 2013-11-16
Hi,

is there a way to configure an ISA server to allow any communications for an application? (like in symantec personal firewall)
My problem is that we have to use video conference via MSN Messenger, and I've read a lot of hints and tips on what ports should be opened. I opened them but it still doesn't work.

thanks in advance.
0
Comment
Question by:thegroover
3 Comments
 
LVL 7

Assisted Solution

by:JJ2
JJ2 earned 50 total points
ID: 11964368
0
 
LVL 35

Accepted Solution

by:
Bembi earned 50 total points
ID: 11980047
This is a general problem on ISA 2000, see what microsoft says:

http://www.microsoft.com/technet/prodtechnol/isa/2000/maintain/isaimsec.mspx
SIPS. Features such as voice, video, application sharing, and whiteboard require a connection to be made between an internal and external client, and use SIP Signaling (SIPS) to set up the communication session, which then uses dynamic ports. For example, using audio/video (AV) requires opening all UDP ports between 5004 and 65535 to allow SIP and media streams (RTP) to cross the firewall. The use of dynamic ports without an associated application filter is a problem because ISA Server does not have information about which ports to open and at what time. No ISA Server SIP application filter is available to circumvent this issue.

or
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/rtcclnt/rtc/traversal_of_upnp_enabled_nats.asp

The usual solution is to open a wide range of ports above 5000 to allow video streaming. And this is a security risk. Try Net-Meeting for this.
0
 
LVL 1

Author Comment

by:thegroover
ID: 11987575
well, thanks anyway guys, the articles are usable.

G
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
palo alto VM series in AWS 3 89
Outbound Internet Access Firewall Best Practice 8 77
centos7 firewalld udp ports 33 64
cannot send E-mails to one company 15 60
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
Edureka is one of the fastest growing and most effective online learning sites.  We are here to help you succeed.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now