ISA/TMG Firewall policy with multiple allowed ports?

Posted on 2010-09-16
Last Modified: 2012-05-10
Am I missing something or do you really need to create a separate policy for every port you want to allow?  For example, if I want to allow ports 80, 443, 1207, 8080 and 15000 to specific internal server, do I really need to create 5 policies?  This would get messy really quick for a large number of servers/policies.  
Question by:dkraut
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2

Assisted Solution

araberuni earned 50 total points
ID: 33699417
If its allowing ports to specific internal server such as

Policy name: xxz
Action: Allow
Protocol: http,https, user-defined (1207,8080,15000)
Destination:ComputerName or internal server
Users:All-users /your users

Then it should be ok. No need to create 5 rules. However, if you are publishing web server then use web publishing rule for each of them. It would not be messy just select all similar rules>right click>group them. you will be organised.

Author Comment

ID: 33700072
Then I must be missing something.  I don't see any way to select more than a single protocol/port per policy or create a custom protocol object that includes more than 1 port?   Is it "secondary connections" maybe?
LVL 49

Accepted Solution

Akhater earned 450 total points
ID: 33704777
No actually you are not missing anything when you are publishing a server you can only specify one protocol/port

in your case you will need 5 rules
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Expert Comment

ID: 33710403
Please let me know, is it a web publishing rule or allowing protocols?? Please explain a bit.
LVL 49

Expert Comment

ID: 33710543
@araberuni the OP is obviously talking about server publishing rules and he is right he will need to create 5 rules as I said earlier

Author Closing Comment

ID: 33827608

Featured Post

Enroll in May's Course of the Month

May’s Course of the Month is now available! Experts Exchange’s Premium Members and Team Accounts have access to a complimentary course each month as part of their membership—an extra way to increase training and boost professional development.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft's ISA Server has been its pre-eminent security product for about a decade and is still regarded amongst the well-informed as one of the best software firewalls and application gateways ever released, by any manufacturer. ISA Server has bee…
So the following errors occurs in 2 ways that I am aware of at this stage, and you receive one of the following error messages: ERROR 1. When trying to save a rule: No Web listener is specified for the Web publishing rule Autodiscovery Publishin…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit If you want to manage em…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question