Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. How to publish an SSL Web site by using SSL tunneling in ISA Server 2004

How to publish an SSL Web site by using SSL tunneling in ISA Server 2004

View products that this article applies to.

For a Microsoft Internet Security and Acceleration Server 2000 version of this article, see 298900 (http://support.microsoft.com/kb/298900/ ) .
For a Microsoft Internet Security and Acceleration Server 2000 version of this article, see 298900 (http://support.microsoft.com/kb/298900/ ) .

↑ Back to the top

Introduction

This article describes how to use a server publishing rule to publish a Secure Sockets Layer (SSL) Web site in Microsoft Internet Security and Acceleration (ISA) Server 2004. You can publish an SSL Web site in many ways. For example, you can use SSL bridging to publish an SSL Web site. However, the SSL bridging method requires you to move the SSL Web site certificate to the computer that is running ISA Server.

You can also use SSL tunneling to publish an SSL Web site. The SSL tunneling method does not require you to move the SSL Web site certificate from the internal Web server computer. This method maps port 443 on the external interface of the ISA Server-based computer to the internal Web server on port 443. This method is described in this article.

↑ Back to the top

More information

To use SSL tunneling to publish an SSL Web site in ISA Server 2004, follow these steps:
  1. Start ISA Server Management.
  2. Expand ServerName, where ServerName is the name of your ISA Server-based computer, and then click Firewall Policy.
  3. Click the Tasks tab, and then click Publish a Secure Web Server.
  4. In the SSL Web publishing rule name box, type a descriptive name for this rule, and then click Next.
  5. Click SSL Tunneling, and then click Next.
  6. In the Server IP address box, type the IP address of the Web server where you want to publish the Web site, and then click Next.
  7. Click to select the check box that corresponds to the network that you want ISA Server to listen to for Hypertext Transfer Protocol Secure (HTTPS) requests. For example, to cause ISA Server to listen on the external network, click to select the External check box.
  8. Click Next, and then click Finish.
  9. Click Apply to update the firewall policy, and then click OK.
The SSL Web site is now available on the external IP address of the ISA Server-based computer. You may have to make host record changes on your externally-accessible DNS server to map the IP address of the ISA Server-based computer's external interface to the host record of the SSL Web site.

For additional information about how to publish a SSL Web site, see the "SSL Bridging and Tunneling" topic in ISA Server 2004 Help.

↑ Back to the top

Keywords: KB837834, kbinfo, kbhowto, kbfirewall, kbisa2006swept

↑ Back to the top

Article Info
Article ID : 837834
Revision : 7
Created on : 12/4/2007
Published on : 12/4/2007
Exists online : False
Views : 414