RE: SSL FTP Through ISA ?

Wed, 02 Apr 2008 08:14:21 -0700 

Currently we have SSL FTP workin on ISA 2004 by doing the following.  On
the client, enable active and specifiy the external IP that the remote
FTP server will see you coming from.  TLS explicit or implicit does not
work at all.

 

From: Kelsey, John [mailto:[EMAIL PROTECTED] 
Sent: Wednesday, April 02, 2008 10:54 AM
To: NT System Admin Issues
Subject: RE: SSL FTP Through ISA ?

 

So if I'm reading that correctly, you can make it work by disabling the
FTP application filter and making a couple of custom rules....BUT..my
secureNAT clients won't be able to access any regular FTP servers
anymore?

 

 

*******************************
John C. Kelsey
DuBois Regional Medical Center
(:  814.375.3073  
*:   [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>  
*******************************

        -----Original Message-----
        From: Steve Moffat [mailto:[EMAIL PROTECTED] On Behalf Of
NTSysAdmin
        Sent: Wednesday, April 02, 2008 10:50
        To: NT System Admin Issues
        Subject: RE: SSL FTP Through ISA ?

        Sorry, Item 5..

         

        S

         

        From: Steve Moffat [mailto:[EMAIL PROTECTED] On Behalf Of
NTSysAdmin
        Sent: Wednesday, April 02, 2008 11:47 AM
        To: NT System Admin Issues
        Subject: RE: SSL FTP Through ISA ?

         

        
http://www.isaserver.org/articles/How_the_FTP_protocol_Challenges_Firewa
ll_Security.html

         

        Scroll down, near to the end. Item 6

         

        HTH

         

        S

         

        From: Kelsey, John [mailto:[EMAIL PROTECTED] 
        Sent: Wednesday, April 02, 2008 10:52 AM
        To: NT System Admin Issues
        Subject: SSL FTP Through ISA ?

         

        All you ISA gurus out there,

            I have some users behind our ISA 2006 firewall that need to
do an SSL FTP to a server out in internet land.  From everything I've
found, it seems that ISA doesn't support this. I found this hard to
believe since we all know that if its not ISA, its CRAP!  Has anybody
done this successfully?  If so, how did you do it?

         

        Thanks all!

         

        *******************************
        John C. Kelsey
        DuBois Regional Medical Center
        (:  814.375.3073  
        2  :   814.375.4005
        *:   [EMAIL PROTECTED] 
        *******************************

         

         

         

         

         

         

         
         
         

 

 

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!    ~
~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm>  ~

Reply via email to