Windows Server - deploy isa firewall client with GPO

I need to deploy the isa client firewall with gpo.  I have the msi package
and have created the policy.  I have tested the policy and it works, however,
I need to transform the file with my server insformation, etc.  How do I do
this?

thanks!

  Phillip Windell replied to Christian

The right way to do it would be to setup the LAN ofr Proxy Autodetection via
WPAD.   Then you do not have to worry about.  The FWC will pick up its config
from the ISA once it detects it.


--
Phillip Windell

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------

possible network problems. . . please try again later. if the problem persists please contact admin. Router Firewall - uPnP, now manually entered: Today I was trying to setup the router using the uPnP solution. The firewall rules in the uPnP table would vanish whenever the router was updated or that table So today I went through the wizard and manually entered the same rules into the firewall. The rules remained after I power cycled the router. Everything seemed to work ok on the IP had already changed! :-( My theories: 1 - I've missed something on the router firewall setup. 2 - There is a problem with the certificate, and this is causing the auth 20 problems. . . please try again later. if the problem persists please = contact = 20 admin. Router Firewall - uPnP, now manually entered: Today I was trying to setup the router using the uPnP solution. The = 20 firewall rules in the uPnP table would vanish whenever the router was = 20 updated or that today I = went = 20 through the wizard and manually entered the same rules into the = firewall. = 20 The rules remained after I power cycled the router. Everything seemed = to = 20 work the IP had already changed! :-( My theories: 1 - I've missed something on the router firewall setup. 2 - There is a problem with the certificate, and this is causing the = auth

and had our provider point it to our public address, opened the ports on the firewall and natted to the inside address. I think I am missing a step somewhere on and had our provider point it to our = public address, opened the ports on the firewall and natted to the = inside = 20 address. I think I am missing a step somewhere the outside. I have the ports open as in the = book on the router and firewall. . Glad to hear that you are enjoying the book? when you're checking the outside had our provider point it to = our = 20 public address, opened the ports on the firewall and natted to the = inside = 20 address. I think I am missing a step somewhere 3DContent-Type> have the = 20 ports open as in the book on the router and firewall. . < / FONT> < / DIV> style = 3D"BORDER-LEFT: #000000 2px solid; PADDING-LEFT: 5px; = PADDING-RIGHT: 0px the outside. I have the ports open as in the = book on the router and firewall. . Glad to hear that you are enjoying the book? when you're checking the outside had our provider point it to = our = 20 public address, opened the ports on the firewall and natted to the = inside = 20 address. I think I am missing a step somewhere 20 = I have the = 20 ports open as in the book on the router and firewall. . < / FONT> < / DIV> style = 3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; = BORDER-LEFT

pda.intrabeg.net Group Policy slow link threshold: 500 kbps Applied Group Policy Objects - -- -- -- -- -- -- -- -- -- -- -- -- -- -- CLOCK FIREWALL SECURITE MESSENGER RIS HOTFIX Default Domain Policy The following GPOs were not applied because they N / A File System Settings - -- -- -- -- -- -- -- -- -- - N / A Public Key Policies - -- -- -- -- -- -- -- -- -- N / A Administrative Templates - -- -- -- -- -- -- -- -- -- -- -- - GPO: FIREWALL Setting: SOFTWARE \ Policies \ Microsoft \ WindowsFirewall \ StandardProfile \ GloballyOpenPorts \ List State: Enabled GPO: FIREWALL Setting: SOFTWARE \ Policies \ Microsoft \ WindowsFirewall \ DomainProfile \ IcmpSettings State: Enabled GPO: FIREWALL Setting: SOFTWARE \ Policies \ Microsoft \ WindowsFirewall \ StandardProfile \ GloballyOpenPorts \ List State: Enabled GPO: HOTFIX Setting: Software \ Policies WindowsUpdate \ AU State: Enabled GPO: CLOCK Setting: Software \ Policies \ Microsoft \ W32time \ Config State: Enabled GPO: FIREWALL Setting: SOFTWARE \ Policies \ Microsoft \ WindowsFirewall \ DomainProfile \ GloballyOpenPorts State: Enabled GPO: FIREWALL Setting: SOFTWARE \ Policies \ Microsoft \ WindowsFirewall \ StandardProfile \ IcmpSettings State: Enabled GPO: FIREWALL Setting: SOFTWARE \ Policies \ Microsoft \ WindowsFirewall \ StandardProfile \ GloballyOpenPorts \ List State: Enabled GPO: MESSENGER RIS Setting: Software Client State: Enabled GPO: HOTFIX Setting: Software \ Policies \ Microsoft \ Windows \ WindowsUpdate \ AU State: disabled GPO: FIREWALL Setting: SOFTWARE \ Policies \ Microsoft \ WindowsFirewall \ DomainProfile \ AuthorizedApplications \ List State: Enabled GPO: FIREWALL Setting: SOFTWARE \ Policies

for IPropertyPagePropertyBag () returned ok. Call to Initializing the StringrayUtil () returned ok. Call to Reading the firewall selection () returned ok. Firewall selection: 0 Call to CStingrayCommit::ValidatePropertyBag () returned ok. 13 / 04 / 2007 3:48 PM C for IPropertyPagePropertyBag () returned ok. Call to Initializing the StringrayUtil () returned ok. Call to Reading the firewall selection () returned ok. Firewall selection: 0 Call to CStingrayCommit::ValidatePropertyBag () returned ok. Call to Validating the property bag () returned returned ok. Call to Doing general configuration () returned ok. 13 / 04 / 2007 3:48 PM Firewall Rule: SBS DHCP Client Cannot find the firewall rule, ignoring the error Firewall Rule: SBS HTTP 80 Out CustomFilter Cannot find the firewall rule, ignoring the error Firewall Rule: SBS FTP 20 In CustomFilter Cannot find the firewall