Solved

Cannot telnet to a server from the ISA 2006 server

Posted on 2013-02-06
10
1,198 Views
Last Modified: 2013-02-07
Hi, i need to confirm that i can telnet to an external
server that sits behind an externla firewall.  We have a simple AD directory on one vlan using ISA 2006 as the proxy/ firewall that sits on our LAN. When from my client pc i run the telnet command to the external server it goes though our ISA server and then times out after hitting the router, we expect this because my client IP address has not been permitted access to teh external firewall however, when i log onto the ISA firewall who's IP address has been allowed through the external firewall it fails to connect using telnet. In fact, it can't even telnet to the router.

How do i enable telnet on the ISA? I'm confused because my client uses telnet and passes the ISA so why can't the ISA itself use telnet? Any help appreciated.
0
Comment
Question by:Jason Thomas
  • 6
  • 4
10 Comments
 
LVL 1

Author Comment

by:Jason Thomas
ID: 38859931
Anyone know how to write a batch file that i could parse my credentails and use the telnet command perhaps?
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 38861388
Do you have an access rule from localhost to external allowing telnet protocol for all users ?
0
 
LVL 1

Author Comment

by:Jason Thomas
ID: 38861395
Hi, no I do not, not from local host. Do you have a rough idea on how to create that?
0
 
LVL 23

Accepted Solution

by:
Suliman Abu Kharroub earned 500 total points
ID: 38861425
It is as same as creating access policies on ISA server,,, just select "localhost" instead of internal in the from field

http://www.youtube.com/watch?v=WcLCrk-bngc

Select localhost on the from field
0
 
LVL 1

Author Comment

by:Jason Thomas
ID: 38863037
Hi mate,

I puit the rule in but get the same failure. Watched the utube vid to ensure was done corretly. What i'm thinking is that when i run up a command prompt and run teh telnet command is it actually using the ISA software to get out?
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 
LVL 1

Author Comment

by:Jason Thomas
ID: 38863232
When i check the ISA logs it states "denied connection - reason - unidentified IP traffic (UDP:23). And that it is hitting our last default rule but doesn't make any sense because I have the allow telnet (any port) rule as number 1 in the list from local host to anywhere?
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 38863325
Which protocol do you select on the rule ? telnet client ?
0
 
LVL 1

Author Comment

by:Jason Thomas
ID: 38863408
got it working, many thanks dude.
0
 
LVL 1

Author Closing Comment

by:Jason Thomas
ID: 38863412
thank you
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 38863418
You are welcome!
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

In Africa (and potentially where you live…), reliability of ISPs is questionable.  With the increased reliance on e-mail as one of the primary forms of communication, the costs to business are significant based on interuption of ISP Connectivity.  T…
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now