• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 666
  • Last Modified:

ISA/TMG Firewall policy with multiple allowed ports?

Am I missing something or do you really need to create a separate policy for every port you want to allow?  For example, if I want to allow ports 80, 443, 1207, 8080 and 15000 to specific internal server, do I really need to create 5 policies?  This would get messy really quick for a large number of servers/policies.  
0
dkraut
Asked:
dkraut
  • 2
  • 2
  • 2
2 Solutions
 
araberuniCommented:
If its allowing ports to specific internal server such as

Policy name: xxz
Action: Allow
Protocol: http,https, user-defined (1207,8080,15000)
Source:Internal/?
Destination:ComputerName or internal server
Users:All-users /your users

Then it should be ok. No need to create 5 rules. However, if you are publishing web server then use web publishing rule for each of them. It would not be messy just select all similar rules>right click>group them. you will be organised.
0
 
dkrautAuthor Commented:
Then I must be missing something.  I don't see any way to select more than a single protocol/port per policy or create a custom protocol object that includes more than 1 port?   Is it "secondary connections" maybe?
0
 
AkhaterCommented:
No actually you are not missing anything when you are publishing a server you can only specify one protocol/port

in your case you will need 5 rules
0
Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

 
araberuniCommented:
Please let me know, is it a web publishing rule or allowing protocols?? Please explain a bit.
0
 
AkhaterCommented:
@araberuni the OP is obviously talking about server publishing rules and he is right he will need to create 5 rules as I said earlier
0
 
dkrautAuthor Commented:
thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Certified Penetration Testing

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

  • 2
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now