|
This issue is sponsored by WebTrends: WebTrends'Firewall Suite captures every action across your firewall. This award-winning software identifies and reports on critical security events, provides immediate alerts and more than 200 reports for IT managers and security professionals. Firewall Suite supports more than 35 leading firewall and proxy
servers, including Cisco and Check Point..
|
| ISAserver.org Newsletter of October 2nd 2001 |
|
http://www.isaserver.org In this issue: **Feature: Beating the SMTP Message Screener =============================== **Feature: Beating the SMTP Message Screener** 1. Overview ----------------------------------------- The challenge is figuring out how to make it work. I think one
of the The SMTP Message Screener configuration that I find least problematic 1. An ISA Server at the edge of the network The IIS 5.0 SMTP server will act as a mail relay and forward mail
for Note that this is not the only configuration. Other possibilities 1. Install the IIS 5.0 SMTP server and Message Screener on the
ISA While these configurations are possible, making them work quickly
and In this article we'll go over the procedures you need to carry
out to ----------------------------------------- 1. Install the ISA Server Message Screener. Put the ISA Server
CD into 2. Start the installation of ISA Server. Choose the Custom installation 3. Place a check mark in the Add-in Services check box, and click 4. Setup installs the Message Screener which will be used by IIS
5.0. ----------------------------------------- 1. At the ISA Server Management console, expand your server name
and 2. Right click on the SMTP Filter and click enable. We're not going to go into the configure of the SMTP application
filter ----------------------------------------- 1. Install the IIS 5.0 SMTP service on a Win2k machine on the internal 2. The interface configuration isn't important unless you want
to 3. In IIS 5.0, create a Remote Domain to support your incoming
messages. 4. The New SMTP Domain Wizard appears . Select the Remote option,
then 5. Double click the remote domain, Select the Forward all mail
to smart
1. Search the CD-ROM for the file SMTPCred.exe. Copy that file
to your 2. Enter the name of the ISA Server. You can leave the default
time ----------------------------------------- 1. Click Start, click Run and type dcomcnfg.exe in the Open text
box, 2. Click the Applications tab, click the VendorData class entry,
and 3. On VendorData Class Properties page click on the Security tab.
Select 4. For each of these options, click the Edit button. You will see
the 5. Restart both the ISA Server and the IIS 5.0 SMTP Server. I suggest ----------------------------------------- ================================== FIREWALL SECURITY: FREE TRIAL from WebTrends WebTrends'Firewall Suite captures every action across your Firewall Suite supports more than 35 leading firewall and proxy ================================== We have a great group of articles in the Learning Zone that will
help DNS for ISA Server Denying Access to a Specific Webpage(s) Using Site and Content
Rules ISA Server SMTP Server Support Common ISA Server Access Policy Issues ISA Server Remote Management ================================== This week's ISA Server Tip is courtesy of Dominicon. This ISAServer.org
Well, after much screaming and having to be held back from smashing
a IF you configure your ISA server per the guides by Tom and Curt,
you Here is how I have my virtual servers configured to allow my internal Open the properties for your vs, and click Access, Authentication.
I Then go to the Relay button. Relaying is how spammers send 10,000,000 I've selected "Only the list below" and leave the list
blank. This way Ok, now you have allowed your legitimate users to relay, and allowed Double click the default (or create a new) and click on "Email
Addresses Why is this a mandatory step? Exchange by default considers all
mail See the following Q articles for info. Mind you, not one of these
gives Q249299 ================================== David Dellano was having a heck of a time with the ISA Services
failing "Wooooyooooo it worked!!!!!!! I'm back on the road again.....
Work-around - 'Add Microsoft ISA Server Control service before
Routing Regedt32 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RemoteAccess WARNING: Using Registry Editor incorrectly can cause serious problems To create a new dependency, select the subkey representing the
service
================================== The Month's Web Boards Post of the Month goes to John Munyan. John "Disable ftp application filter. Primary port 21 in Secondary port 1117 through 5190 in ================================== The ISA Server Link of the Week is Practically Networked's list
of ================================== **Ask Dr. Tom** This question comes from Cam Braidwood: "I have a problem with Destination sets. When publishing a
web site Is it the real DNS / host header name of the destination you require
to The first makes sense as then as then you define the bridge / 10061 - Connection refused I am getting to the ISA Server, but its not making the translation.
Any
1. The Incoming Web Requests listener is not configured properly All of these are common problems, although typos in the Destination
Sets ================================== This month's ISA Server Heroes of the Month are the Firefighters
and Next month we'll continue with our traditional approach to naming
ISA ================================== Copyright(c) isaserver.org October 2001
|
|
|
Discuss your ISA Server issues with thousands of other ISA Server experts. Click here to join!