- Transmission Control Protocol (TCP) traffic on port 5631.
- User Datagram Protocol (UDP) traffic on port 5632.
837831 How to permit non-Microsoft programs to connect to the Internet through Internet Security and Acceleration Server 2004
Configure the TCP port 5631 protocol definition
Create a protocol definition for TCP port 5631. To do so, follow these steps:- Click Start, point to All Programs, point to Microsoft ISA Server or Microsoft Forefront TMG Management, and then click ISA Server Management or Forefront TMG Management.
- In the left pane, expand ServerName, where ServerName is the name of the ISA Server or Forefront Threat Management Gateway computer, and then click Firewall Policy.
- In the right pane, click the Toolbox tab.
- In the Protocols area, click New, and then click Protocol.
- In the Protocol definition name box, type a descriptive name for the protocol definition, and then click Next.
- In the Primary Connection Information dialog box, click New.
- In the Protocol type list, click TCP.
- In the Direction list, click Inbound.
- In the Port Range area, type 5631 in the From box, type 5631 in the To box, and then click OK.
- Click Next.
- When you are prompted if you want to use secondary connections, click No, and then click Next.
- Click Finish.
Configure the UDP port 5632 protocol definition
Create a protocol definition for UDP port 5632. To do so, follow these steps:- Click Start, point to Programs, point to Microsoft ISA Server or Microsoft Forefront TMG Management, and then click ISA Server Management or Forefront TMG Management.
- In the left pane, click Firewall Policy.
- In the right pane, click the Toolbox tab.
- In the Protocols area, click New, and then click Protocol.
- In the Protocol definition name box, type a descriptive name for the protocol definition, and then click Next.
- In the Primary Connection Information dialog box, click New.
- In the Protocol type list, click UDP.
- In the Direction list, click Receive Send.
- In the Port Range area, type 5632 in the From box, type 5632 in the To box, and then click OK.
- Click Next.
- When you are prompted if you want to use secondary connections, click No, and then click Next.
- Click Finish.
Configure the TCP port 5631 and UDP port 5632 access rule
Create an access rule that is based on the protocol definitions. To do so, follow these steps:- In ISA Server Management or in Forefront TMG Management, click Firewall Policy in the left pane.
- In the right pane, click the Tasks tab, and then click Create New Access Rule.
Note In ISA Server 2006 or in Forefront Threat Management Gateway, click Create Access Rule. - In the Access rule name box, type a descriptive name for the access rule, and then click Next.
- In the Rule Action dialog box, click Allow, and then click Next.
- In the This rule applies to list, click Selected protocols.
- Click Add.
- Expand User-Defined, click the protocol definition that you created for TCP port 5631, click Add, click the protocol definition that you created for UDP port 5632, click Add, click Close, and then click Next.
- In the Access Rule Sources dialog box, click Add.
- Locate, and then click the network entity that you want to add, and then click Add. For example, to permit access from the external network, expand Networks, click External, and then click Add.
- To add more than one network entity, repeat step 9 for each network entity that you want to add, click Close, and then click Next.
Note Because ISA Server 2006, ISA Server 2004, or Forefront Threat Management Gateway applies policies regardless of source network, you may have to permit access from the internal network to the local host. This depends on the specific access rules that you have defined. - In the Access Rules Destinations dialog box, click Add.
- Expand Networks, click Local Host, click Add, click Close, and then click Next.
- In the User Sets dialog box, click Next if you want to leave the default All Users user set option.
Note If you do not want the rule to apply to all users, click All Users under This rule applies to requests from the following user sets, and then click Remove. - To add a user set, click Add, locate and then click the user set that you want to add, and then click Add.
- To add more than one user set, repeat step 14 for each user set that you want to add, click Close, and then click Next.
- Click Finish.
- Click Apply to save the changes and to update the firewall policy, and then click OK.
For more information about Microsoft Internet Security and Acceleration (ISA) Server or Forefront Threat Management Gateway lockdown mode, in the ISA Server Management console, click Help on the Action menu, type lockdown mode in the Type in the word(s) to search for box, and then click List Topics to view the list of topics returned.
The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, regarding the performance or reliability of these products.