Sign in

Microsoft.com

United States (English)

Brasil (Português)Česká republika (Čeština)Deutschland (Deutsch)España (Español)France (Français)Italia (Italiano)Россия (Русский)대한민국 (한국어)中华人民共和国 (中文)台灣 (中文)日本 (日本語)香港特别行政區 (中文)

Forefront Edge Security TechCenter

Troubleshooting

Forefront Edge Security TechCenter > Forefront Edge Security Forums > Forefront Edge Security - Installation, Upgrade, and Setup > ISA Firewall Policy rule

ISA Firewall Policy rule

Tuesday, October 27, 2009 1:51 PMIsaac2k2

0
Sign In to Vote
Hi,

I have ISA 2006 setup and running. I created a rule for access to the isa server using the following protocols "Microsoft CIFS (TCP) and NetBios Session". Withe this rule, I can connect to the isa server drives using \\server name\c$.

The problem I have right now is not sure what rule to create to enable isa server connect to other systems drives on the internal network. Also when I do nslookup on the isa server, i get:

DNS request timed out.
timeout was 2 seconds.
*** Can't find server name for address 172.xx.xx.xx: Timed out
Default Server: UnKnown
Address: 172.xx.xx.xx

Note: I can connect to this systems via their IP address but not by their dns names.

Any one with any idea?

Thanks
Isaac2k2
- Reply
- Quote

Answers

Tuesday, October 27, 2009 5:08 PMMarc.GroteMVP

0
Sign In to Vote
Hi, you must have a successful name resolution on ISA for DNS. You must use the right IP address of the internal DNS Server in the DNS properties of te internal network adapter on ISA and you shoul also have a look if a system policy rule allows DNS to the DNS Server or a custom firewall rule allows this traffic regards Marc www.nt-faq.de www.it-training-grote.de www.forefront-tmg.de
- Marked As Answer byNick Gu - MSFTMSFT, ModeratorWednesday, November 04, 2009 8:12 AM
- Reply
- Quote
Wednesday, November 04, 2009 12:32 PMIsaac2k2

0
Sign In to Vote
Hi,

Thanks for your response. I had to follow every error displayed under the query to determine what protocols to enable.

All working fine now.

Cheers,
Isaac
Isaac2k2
- Marked As Answer byIsaac2k2 Wednesday, November 04, 2009 12:32 PM
- Reply
- Quote

All Replies

Tuesday, October 27, 2009 5:08 PMMarc.GroteMVP

0
Sign In to Vote
Hi, you must have a successful name resolution on ISA for DNS. You must use the right IP address of the internal DNS Server in the DNS properties of te internal network adapter on ISA and you shoul also have a look if a system policy rule allows DNS to the DNS Server or a custom firewall rule allows this traffic regards Marc www.nt-faq.de www.it-training-grote.de www.forefront-tmg.de
- Marked As Answer byNick Gu - MSFTMSFT, ModeratorWednesday, November 04, 2009 8:12 AM
- Reply
- Quote
Wednesday, November 04, 2009 12:32 PMIsaac2k2

0
Sign In to Vote
Hi,

Thanks for your response. I had to follow every error displayed under the query to determine what protocols to enable.

All working fine now.

Cheers,
Isaac
Isaac2k2
- Marked As Answer byIsaac2k2 Wednesday, November 04, 2009 12:32 PM
- Reply
- Quote

Need Help with Forums? (FAQ)