Solved

ISA 2000 - Opening Port for connectivity

Posted on 2007-12-02
2
691 Views
Last Modified: 2008-11-17
Hi Experts
I need to open the following port range 40000  40100 on my ISA 2000 server.
As I am fairly new to ISA, could I please ask for a detailed step for step on how to open this port range?
I have a Windows 2000 Domain, which sits behind an ISA 2000 server. This server is configured to be our firewall and proxy server.
Just want to check, but with these ports open, does it provide any threat to the security my network?
Please feel free to ask any questions, as I am not sure what else is needed from me at this point.
Any help would be much appreciated.
Regards
mustekkzn
0
Comment
Question by:mustekkzn
2 Comments
 
LVL 16

Accepted Solution

by:
2PiFL earned 500 total points
ID: 20391272

To grant access to a specific computer, you have to enable ISA to pass this connection by creating a Client Address Set and a protocol rule that allows the specific protocols from the specific client computers (based on IP address):
1.      In ISA Management, right-click your server, and then click Properties.
2.      Click to expand Access Policy.
3.      Right-click Protocol Rules, and then click New.
4.      Create a protocol rule that applies to the specific protocol that you want to allow (such as HTTP) or click All Protocols.
5.      Select the schedule for this protocol rule.
6.      Click Specific Computers (client address sets) as the client type to which this rule should apply.
7.      Create a client address set or use an existing one that contains the clients to which you want to grant access.
8.      Click Next, and then click Finish.

Opening any port increases your risk so you want to restrict who can use these ports.  THe above instructions will allow you to decide (by IP address) who can access the ports you define.

Here is an excellent resource for ISA 2000:

http://labmice.techtarget.com/BackOffice/ISAServer2000/configure.htm
0
 

Author Comment

by:mustekkzn
ID: 20394107
Hi there 2PiFL
Thanks so much for the above post. I really appreciate the fact that you did it step for step for me.
Also, I have to say what an excellent link you have provided. There are a lot of topics I would like to have a look into.
To get to my question now:
In above link, I did not get to specify any port range at any point. Where would I be doing this?
Kind regards
mustekkzn
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Failing SSL report at SSL Labs 5 2,665
isa 2006 2 553
Lync 2013 Test Connectivity error 34 6,538
TMG Firewall website policy 2 126
In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now