Solved

Disable ssh in ISA Server

Posted on 2004-10-14
6
585 Views
Last Modified: 2013-11-16
Hi!
I wonder if it´s posible to disable ssh packets from passing trough ISA-server.
The problem is that people running ssh on port 80. I need a packet filter that reconize this packets and destroy them =)

Windows 2003
Isa Server

0
Comment
Question by:YMNORR
6 Comments
 
LVL 14

Expert Comment

by:chris_calabrese
ID: 12309482
Hmm, I thought that ISA server did HTTP proxying. In order to do this they would have to not only be running ssh on port 80, but passing it through an HTTP tunnel. If so, there's probably not much you can do about it without killing all other port 80 connections (which might be OK if this is inbound to the organization where you can allow it only for specific servers).
0
 
LVL 4

Expert Comment

by:novacopy
ID: 12309551
check out  isaserver.org

they have alot of usefully info on thier site.
0
 
LVL 51

Accepted Solution

by:
ahoffmann earned 63 total points
ID: 12312689
there're firewalls which can detect tunneled protocols.
But you loose again if they switch from http to https. That's admins life ;-)
0
 
LVL 6

Assisted Solution

by:Sebo2000
Sebo2000 earned 62 total points
ID: 12336118
If you will install ISA in Proxy mode and not firewall mode they will not have that ability, right now they are running firewall client or pointing to ISA as default gateway, that is why they have that ability, you would have to get third party web filter to eliminate that, something like web sense.
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As cyber crime continues to grow in both numbers and sophistication, a troubling trend of optimization has emerged over the last year.
Many businesses neglect disaster recovery and treat it as an after-thought. I can tell you first hand that data will be lost, hard drives die, servers will be hacked, and careless (or malicious) employees can ruin your data.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question