About Ryan Stewart Expertise I can answer questions, provide advice and assist with troubleshooting several areas of internet and network security including but not limited to: Windows XP, Windows Server 2003 & 2008, Windows Vista, Windows 7 and Linux operating systems; planning, design, implementation, management & testing in small business, home and home office environments; server and workstation hardware; in-house and remote system auditing; software-based offensive security (penetration and vulnerability testing); software-based defensive security (firewall configuration, encrypting & securing services with SSL, VPN, AV gateway, antivirus, access control, monitoring & intrusion detection); hardware-based security configuration & techniques; Certificate Authority and SSL certificates; wireless security (WEP, WPA, WPA2, 802.1X).
Experience I've been an independent IT consultant for 5 years serving small businesses and home users.
Education/Credentials CISM - Certified Information Security Manager |
CCNA Security - Cisco Certified Network Associate Security |
MCSA - Microsoft Certified Systems Administrator
Question Hi I have a Windows 2003 Standard server and running ISA 2006. Clients connected to this server cannot access MSN but they can see all websites. How can I allow ISA to open access for MSN latest version?
Thanks!
Answer Giorgo,
Pull up the ISA management console and expand the Access Policy object > Right click on Protocol Rule, select New > Rule. When the New Protocol Rule Wizard opens choose a name for the new rule (ex. MSN) > click Next > select Allow then click Next. In the "Apply this rule to" drop-down menu, choose Selected Protocols, then check the box next to MSN Messenger & click Next. In the next screen you'll be able to specify when the users will be able to access the MSN service (Always, Weekends, Work hours) > click Next. Choose which clients will have access to MSN and click Next. Review the previously selected options for the new protocol rule then click Finish.
Once the protocol rule is created, you'll need to setup a packet filter that will allow MSN to pass-through the ISA server. From the management console, right click on IP Packet Filters under the Access Policy object > select New > Filter > click Next. Name the new filter, click Next. Select the "Allow packet transmission" > click Next. Choose "Custom" for the new filter type > click Next. Select TCP from the IP Protocol drop-down menu > Both under the Direction drop-down menu > for Local Port choose Dynamic > and for Remote Port choose Fixed Port > Port number 1863 > click Next. Choose "Default IP addresses for each external interface on the ISA Servers computer" > click Next. Select "All remote computers" > click Next. Review the settings you entered and click Finish. Now all you need to do is restart the services and you'll be good to go!
