Solved

ISA 2000 dynamic ports

Posted on 2004-08-31
3
631 Views
Last Modified: 2013-11-16
Hi,

is there a way to configure an ISA server to allow any communications for an application? (like in symantec personal firewall)
My problem is that we have to use video conference via MSN Messenger, and I've read a lot of hints and tips on what ports should be opened. I opened them but it still doesn't work.

thanks in advance.
0
Comment
Question by:thegroover
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 7

Assisted Solution

by:JJ2
JJ2 earned 50 total points
ID: 11964368
0
 
LVL 35

Accepted Solution

by:
Bembi earned 50 total points
ID: 11980047
This is a general problem on ISA 2000, see what microsoft says:

http://www.microsoft.com/technet/prodtechnol/isa/2000/maintain/isaimsec.mspx
SIPS. Features such as voice, video, application sharing, and whiteboard require a connection to be made between an internal and external client, and use SIP Signaling (SIPS) to set up the communication session, which then uses dynamic ports. For example, using audio/video (AV) requires opening all UDP ports between 5004 and 65535 to allow SIP and media streams (RTP) to cross the firewall. The use of dynamic ports without an associated application filter is a problem because ISA Server does not have information about which ports to open and at what time. No ISA Server SIP application filter is available to circumvent this issue.

or
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/rtcclnt/rtc/traversal_of_upnp_enabled_nats.asp

The usual solution is to open a wide range of ports above 5000 to allow video streaming. And this is a security risk. Try Net-Meeting for this.
0
 
LVL 1

Author Comment

by:thegroover
ID: 11987575
well, thanks anyway guys, the articles are usable.

G
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Sonicwall NSA failover & LB 4 66
TMG 2010 Deployment 3 105
VPN running on Windows 2008 Server 11 91
McAfee LiveSafe firewall is blocking a safe website 3 119
Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

697 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question