This article describes how to allow access to Terminal Services on an ISA server from the external interface by creating a static packet filter.
This section describes the packet filter properties that you need to allow terminal server clients to connect to the Terminal Services session that is running on the ISA server by using the RDP protocol over TCP port 3389:
- Open the ISA Administration tool, and then expand the Server settings.
- Expand Access Policy, and then click IP Packet Filters.
- In the right pane, click Create Packet Filter.
- Specify a name such as "Terminal Server access", and then click Next.
- In the Set this filter for box, click Only this server, and then click Next.
- In the Create a filter for box, click Allow packet transmission, and then click Next.
- In the Use this filter box, click Custom, and then click Next.
- For the filter settings, specify the following settings, and then click Next:
IP protocol: TCP
Local Port: Fixed port
Port number: 3389
Remote Port: All ports
- In the Apply this packet filter to box, click Default IP addresses for each external interface on the ISA Server computer, and then click Next.
- In the "Remote Computers" section, click either All remote computers or Only this remote computer, and then click Next. This setting specifies the host which is the terminal server client that accesses the Terminal Services session.
- Click Finish.
Article ID: 275210 - Last Review: October 31, 2006 - Revision: 1.2
- Microsoft Internet Security and Acceleration Server 2000 Standard Edition
|kbhowto kbnetwork kbtermserv KB275210|