ISA server 2004 and users in rules

Hello. I have Isa server 2004 in an active directory environment. I have 1 simple rule, that all authenticated users have rights to port 80 and https. I want to add a rule for skype for certain users but when I add the rule it doesnt matter which users I select, all the users can use skype.
editperfilAsked:
Who is Participating?
 
Keith AlabasterConnect With a Mentor Enterprise ArchitectCommented:
If Skype is using the same port as your standard web proxy traffic then you will not be able to block it in the normal way.

Right-click the outgoing rule and select configure http.
Select signatures.
See the attached link
http://forums.isaserver.org/Skype_Signature/m_2002004505/tm.htm

Regards
Keith
0
 
cbeeeCommented:
make sure the skype rule is above your 'simple' rule in the rulebase.
0
 
editperfilAuthor Commented:
Yes, is the first rule
0
Firewall Management 201 with Professor Wool

In this whiteboard video, Professor Wool highlights the challenges, benefits and trade-offs of utilizing zero-touch automation for security policy change management. Watch and Learn!

 
cbeeeCommented:
so presumably nobody could access skype before you put the rule in ?

you have an AD group with the skype users in ?
0
 
editperfilAuthor Commented:
Yes. I define the users in Isa server. I create a group where I add the AD users
0
 
cbeeeCommented:
Best Practice and easier is to add the users to and AD group then use teh group for the rule.  The same goes for the simple rule.
0
 
editperfilAuthor Commented:
But it doesnt work!!!
0
 
Keith AlabasterEnterprise ArchitectCommented:
I assume Skype is going out over port 80 also?
Open the gui,
select monitoring - logging - click on start query.
Make a Skype connection; are you seeing any additional traffic pass through the log?

Is the ISA in firewall mode or cache mode (one ot two nic's installed)?
Are you using the ISA client on your workstations?
Are you using SecureNAT?
0
 
editperfilAuthor Commented:
Is in firewall. In fact skype is an example. I tried other ports, for example radio and again if i put a rule all users can use it.
0
 
Keith AlabasterEnterprise ArchitectCommented:
Can you answer the rest of the questions please?
0
 
editperfilAuthor Commented:
Is in firewall more
With isa client and without isa client
Yes securenat
0
 
Keith AlabasterEnterprise ArchitectCommented:
How have you set the ISA Proxy?
open the GUI
Select configuration - networks
double-click internal and view the properties.
How are users authenticating for socks and web traffic? Over port 8080?

Open the gui,
select monitoring - logging - click on start query.
Make a Skype connection; are you seeing any additional traffic pass through the log?
0
 
editperfilAuthor Commented:
Over port 8080 with integrated security. I see traffic with skype.
0
 
Keith AlabasterEnterprise ArchitectCommented:
Thank you :)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.