Solved

Disable ssh in ISA Server

Posted on 2004-10-14
6
592 Views
Last Modified: 2013-11-16
Hi!
I wonder if it´s posible to disable ssh packets from passing trough ISA-server.
The problem is that people running ssh on port 80. I need a packet filter that reconize this packets and destroy them =)

Windows 2003
Isa Server

0
Comment
Question by:YMNORR
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 14

Expert Comment

by:chris_calabrese
ID: 12309482
Hmm, I thought that ISA server did HTTP proxying. In order to do this they would have to not only be running ssh on port 80, but passing it through an HTTP tunnel. If so, there's probably not much you can do about it without killing all other port 80 connections (which might be OK if this is inbound to the organization where you can allow it only for specific servers).
0
 
LVL 4

Expert Comment

by:novacopy
ID: 12309551
check out  isaserver.org

they have alot of usefully info on thier site.
0
 
LVL 51

Accepted Solution

by:
ahoffmann earned 63 total points
ID: 12312689
there're firewalls which can detect tunneled protocols.
But you loose again if they switch from http to https. That's admins life ;-)
0
 
LVL 6

Assisted Solution

by:Sebo2000
Sebo2000 earned 62 total points
ID: 12336118
If you will install ISA in Proxy mode and not firewall mode they will not have that ability, right now they are running firewall client or pointing to ISA as default gateway, that is why they have that ability, you would have to get third party web filter to eliminate that, something like web sense.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

No single Antivirus application (despite claims by manufacturers) will catch or protect you from all Virus / Malware or Spyware threats. That doesn't stop you from further protecting yourself however - and this article is to show you how.
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question