We help IT Professionals succeed at work.

How to open a port on ISA Server

576 Views
Last Modified: 2012-06-27
I have been asked to do the following, open ports 44310 and 44312 on https.  Can someone help me to open these ports on the ISA server?  I tried creating a rule but don't know if I did it correctly.

Thanks in advance for any information
Comment
Watch Question

Enterprise Architect
CERTIFIED EXPERT
Top Expert 2008
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
Keith AlabasterEnterprise Architect
CERTIFIED EXPERT
Top Expert 2008

Commented:
Simon - it is for https therefore it does not need a protocol - https is the protocol. ISA and FTMG only allows https over ports 443 and 563 out of the box.

You need to use the ISA_tpr.js script to add additional https to operate over additional ports. Once done, the existing https definition, regardless of access rule or publishing rule will include the new port number. All it requires is stopping and restarting the ISA or FTMG services after it is added.

Keith
Keith,
I agree with you, but this applies only if wants to perform HTTP(S) publishing. He can workaround this by just allowing access directly to the service on a specific port - Server publishing rule, therefore ISA would not care what kind of traffic it is - handle the traffic at layer 2 rather than layer 7.
Keith AlabasterEnterprise Architect
CERTIFIED EXPERT
Top Expert 2008

Commented:
You think so?
sorry, my mistake - the correct thing to say would be to handle it layer 4 instead of layer 7.

He could do either thing, it's mwebb's choice, but handling this with HTTPS publishing would be more secure.

But again it depends on the application.
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
Thanks everyone, I will try this today, I had most of it completed the way I thought it should be done with a few tweaks (thanks Amjad4).  Is there a good way to test if I have completed correctly?  I just have to go through and check my work again because the site still isn't working, but I need to make sure it is not the FW so that I can go back to IBM and let them know.

Thanks again!
You can check the session state and monitor what happens with these ports

TMG Console ->  logs and reporting - > logging tab

Author

Commented:
I am sorry I don't mean to be a completely ignorant, but unfortunately on the ISA I am.  I searched google but couldn't find the correct answer.  I am now getting "Failed Connection Attempt" in my log file.  I don't think the url is correct it has a space in it, but IBM assures me it is correct.

Thanks again for all your help!
Keith AlabasterEnterprise Architect
CERTIFIED EXPERT
Top Expert 2008

Commented:
I guess by now you have decided it cannot be done except the way I have advised?

Author

Commented:
To be completely honest I am not sure if it is working or not.  I can't get to the web site, I do not know why they would make it so difficult to get to their sites when we are business partners!  Of course IBM is IBM they do what they want and we just deal with it..
I am really curious what was the solution? Would you mind sharing?

Author

Commented:
I am not sure what the resolution was, I followed all the examples and I was able to get it working.  I am not at all sure it was even the firewall because IBM had to resolve some other issues.

Thank you all for your help!

Gain unlimited access to on-demand training courses with an Experts Exchange subscription.

Get Access
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Empower Your Career
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE

Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.