I have a program that needs port, let's say, 5250, to be open. I went into
ISA2004 Standard, click on New Access Rule.



I gave it a name
Allow
Apply to Selected Protocol
added "port protocol that I created" with Primary connection of TCP 5250
Inbound.
Applied from External source
Applied to Internal and Local Host sources
Applied to All Users
Finished

I clicked on Apply in ISA.

The program still says that port is not open.

What I am doing wrong and what do I need to do to get the port open?

Thanks!

Your rule is wrong, but how to fix it depends on how the program works.

Does the program listen for a connection? Or does it establish the
connection to another server?

If the program listens then you need to create a publishing rule, not an
access rule. The problem is that ISA doesn't know where to forward the
traffic to without being told.

If, however, the program initiates the connection then your "from" and "to"
are reversed. The traffic comes "from" internal sources and goes "to the
external source, which is the reverse of what you have.

So the program is reporting accurately that the port is closed, because it
is neither able to send or receive on that port as expected.

-Cliff


"TL" <torrey no spam moderntravel no spam net> wrote in message
news:OXl6b24IKHA.3928@newsgroup

> I have a program that needs port, let's say, 5250, to be open. I went
> into ISA2004 Standard, click on New Access Rule.
>
> I gave it a name
> Allow
> Apply to Selected Protocol
> added "port protocol that I created" with Primary connection of TCP
> 5250 Inbound.
> Applied from External source
> Applied to Internal and Local Host sources
> Applied to All Users
> Finished
>
> I clicked on Apply in ISA.
>
> The program still says that port is not open.
>
> What I am doing wrong and what do I need to do to get the port open?
>
> Thanks!
>

Cliff, thank you. That makes sense. I appreciate your assistance.


"Cliff Galiher" <cgaliher@newsgroup> wrote in message
news:eCo$Tc6IKHA.3000@newsgroup

> Your rule is wrong, but how to fix it depends on how the program works.
>
> Does the program listen for a connection? Or does it establish the
> connection to another server?
>
> If the program listens then you need to create a publishing rule, not an
> access rule. The problem is that ISA doesn't know where to forward the
> traffic to without being told.
>
> If, however, the program initiates the connection then your "from" and
> "to" are reversed. The traffic comes "from" internal sources and goes "to
> the external source, which is the reverse of what you have.
>
> So the program is reporting accurately that the port is closed, because it
> is neither able to send or receive on that port as expected.
>
> -Cliff
>
>
> "TL" <torrey no spam moderntravel no spam net> wrote in message
> news:OXl6b24IKHA.3928@newsgroup

>> I have a program that needs port, let's say, 5250, to be open. I went
>> into ISA2004 Standard, click on New Access Rule.
>>
>> I gave it a name
>> Allow
>> Apply to Selected Protocol
>> added "port protocol that I created" with Primary connection of TCP
>> 5250 Inbound.
>> Applied from External source
>> Applied to Internal and Local Host sources
>> Applied to All Users
>> Finished
>>
>> I clicked on Apply in ISA.
>>
>> The program still says that port is not open.
>>
>> What I am doing wrong and what do I need to do to get the port open?
>>
>> Thanks!
>>