Announcement

Collapse
No announcement yet.

port opening

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • port opening

    Dear All

    I facing Problem to opening Non Standard Port SSL using 443 port and we have some client they give me some site that required Access 8443 port on https

    https://site or ip:8443 i am getting error message

    can any one give me step by step process give certain user to access the site that on non standard prot like https://401.23.236.22:8443

    i use ISAtrpe.msi tools for port change but after some time isa firewall service is completely stooped.
    Last edited by mrk2008; 19th August 2009, 20:25.

  • #2
    Re: port opening

    Could you explain what you are asking in a more clear manner? It's not clear what you're trying to accomplish. This is my guess:

    You have a vendor that runs an SSL encrypted web site on port 8443. You want to define an outbound access rule on your ISA server to allow certain users to access this web site. Do I have it about right?

    If so, here's what I would say (I have no experience with ISA): Most firewalls allow you to create a custom service (port 8443) and to create a rule that allows that service inbound or outbound or both. Have you tried creating a custom service in ISA and then creating a rule to allow users to access that service in the outbound direction?

    Comment


    • #3
      Re: port opening

      Are you looking for this?
      http://www.isaserver.org/articles/20...portrange.html
      Marcel
      Technical Consultant
      Netherlands
      http://www.phetios.com
      http://blog.nessus.nl

      MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
      "No matter how secure, there is always the human factor."

      "Enjoy life today, tomorrow may never come."
      "If you're going through hell, keep going. ~Winston Churchill"

      Comment


      • #4
        Re: port opening

        For the benefit of those who don't want to read the full article, ISA Server does not by default allow SSL Tunnel traffic on any port other than 443. It is possible to change this by using third party tools, probably the most common of which is ISATrpe (ISA Tunnel Range Port Editor). This is quite a common issue, E.g. for access to external Citrix servers. So common in fact that Citrix have a KB article on how to change the port ranges in ISA Server.

        The article Dumber has linked to should tell you what you need to know, Tom Shinder is pretty much the daddy when it comes to ISA Server.
        BSc, MCSA: Server 2008, MCSE, MCSA: Messaging, MCTS
        sigpic
        Cruachan's Blog

        Comment


        • #5
          Re: port opening

          Awesome! i think views are worth reading.

          Comment


          • #6
            Re: port opening

            Cruachan,

            Well it isn't actually an issue. You can also simply create some new protocols and use them, however the advantage of the port range editor is that you can use the HTTP filtering just like when you use HTTP(s)
            Marcel
            Technical Consultant
            Netherlands
            http://www.phetios.com
            http://blog.nessus.nl

            MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
            "No matter how secure, there is always the human factor."

            "Enjoy life today, tomorrow may never come."
            "If you're going through hell, keep going. ~Winston Churchill"

            Comment


            • #7
              Re: port opening

              Issue was maybe a strong word for it!
              BSc, MCSA: Server 2008, MCSE, MCSA: Messaging, MCTS
              sigpic
              Cruachan's Blog

              Comment

              Working...
              X