Pages

Monday, February 8, 2010

SSL Traffic and Microsoft ISA 2006 Server

Microsoft's ISA 2006 Firewall/Proxy will not allow SSL traffic on any other port except port 5003. Well actually, it will allow the HTTPS request to go out but will not allow response back with message of "Unidentified IP Traffic". This applies to all of the following:

Microsoft Internet Security and Acceleration Server 2004 Standard Edition
Microsoft Internet Security and Acceleration Server 2000 Standard Edition
Microsoft Windows Small Business Server 2003 Premium Edition
Microsoft Internet Security and Acceleration Server 2006 Enterprise Edition
Microsoft Internet Security and Acceleration Server 2006 Standard Edition
Windows Essential Business Server 2008 Standard
Microsoft Forefront Threat Management Gateway, Medium Business Edition

You can use the following KB to use vbscript to add more ports on ISA.
http://support.microsoft.com/kb/283284

No comments:

Post a Comment