Solved

Disable ssh in ISA Server

Posted on 2004-10-14
6
549 Views
Last Modified: 2013-11-16
Hi!
I wonder if it´s posible to disable ssh packets from passing trough ISA-server.
The problem is that people running ssh on port 80. I need a packet filter that reconize this packets and destroy them =)

Windows 2003
Isa Server

0
Comment
Question by:YMNORR
6 Comments
 
LVL 14

Expert Comment

by:chris_calabrese
ID: 12309482
Hmm, I thought that ISA server did HTTP proxying. In order to do this they would have to not only be running ssh on port 80, but passing it through an HTTP tunnel. If so, there's probably not much you can do about it without killing all other port 80 connections (which might be OK if this is inbound to the organization where you can allow it only for specific servers).
0
 
LVL 4

Expert Comment

by:novacopy
ID: 12309551
check out  isaserver.org

they have alot of usefully info on thier site.
0
 
LVL 51

Accepted Solution

by:
ahoffmann earned 63 total points
ID: 12312689
there're firewalls which can detect tunneled protocols.
But you loose again if they switch from http to https. That's admins life ;-)
0
 
LVL 6

Assisted Solution

by:Sebo2000
Sebo2000 earned 62 total points
ID: 12336118
If you will install ISA in Proxy mode and not firewall mode they will not have that ability, right now they are running firewall client or pointing to ISA as default gateway, that is why they have that ability, you would have to get third party web filter to eliminate that, something like web sense.
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now