Solved

Log or monitor all inbound / outbound traffic on a server using Microsoft ISA Server 2006

Posted on 2010-09-16
5
1,383 Views
Last Modified: 2012-05-10
Using Microsoft ISA Server 2006, how does one monitor ALL inbound and outbound traffic that is flowing through a specific (Windows 2003) application server? Currently, when we view traffic with the ISA monitoring tool, we see only limited traffic on this application server. There should be lots of traffic between this application server and other servers including the Exchange server. I am seeing no traffic between the application servers and; very limited traffic going to the Exchange Server. We need to see exactly what ports are being used on this application server. Thank you
0
Comment
Question by:marcustibesar
  • 3
  • 2
5 Comments
 
LVL 10

Assisted Solution

by:simonlimon
simonlimon earned 500 total points
ID: 33694945
Have you tried looking at session states?

Isa console reporting, logging tab, and then configure the appropriate rule.
0
 

Author Comment

by:marcustibesar
ID: 33695315
Hello simonlimon.

No I am not familiar with session states.

I am new to ISA and, can't seem to find "Isa console reporting". We have ISA Server 2006 - can you step me thru this please?

Thank you!
0
 
LVL 10

Accepted Solution

by:
simonlimon earned 500 total points
ID: 33695417
Open the "ISA console" Look for reporting or logs and reports and find the logging tab..

Configure the rule to filter just the traffic from client IP of the client and press start query.
0
 

Author Comment

by:marcustibesar
ID: 33702456
We have already attempted this as follows:

Microsoft ISA Server --> ISA Server Management --> Arrays --> p8 staging --> Monitoring --> Logging

--> Edit Filter --> Filter by Client IP --> Equals --> Value (ip address of the application server) --> Add to

List  --> Start Query

It then indicates "Fetching results..." but, it does does display the logging results


0
 

Author Comment

by:marcustibesar
ID: 33702461
correction does not display the logging results
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now