Geekzone: technology news, blogs, forums
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


23455 posts

Uber Geek

Lifetime subscriber

#63238 23-Jun-2010 09:18
Send private message

Hi There!

We have a couple of sites that use banking sites like and bnz and the problem we are having is getting a rule that works within ISA 2004.

Are there any specific guidelines?

At this point despite having some VERY general wildcard rules, we can't even get the website's front pages to load.

Any assistance greatly appreciated.

Create new topic
415 posts

Ultimate Geek

Lifetime subscriber

  #344454 23-Jun-2010 09:44
Send private message

I haved used ISA Server for years and don't recall any specific issues with banking sites, however that is a really old version now.

A look at found this which may be relevant:

With ISA being ba secrity product I would suggest running the latest release - which is Forefront Threat Management Gateway 2010 and is excellent.

Paul Spain
Founder: Gorilla Technology, NZ Tech Podcast

794 posts

Ultimate Geek


  #344701 23-Jun-2010 22:54
Send private message

The ISA course I did last year still used text books based on ISA 2004 (but taught ISA 2006).

No problems making Internet Banking work. Surprised you're having troubles, to be honest.

No signature to see here, move along...


4062 posts

Uber Geek


  #344705 23-Jun-2010 23:11
Send private message

i do recall a couple of years back that some of the banks were doing weird things with their configurations, and that was breaking some firewalls. i cant recall exactly what the problems were, but you might be able to find something searching the nznog archives

2416 posts

Uber Geek


  #344725 24-Jun-2010 02:28
Send private message

This may well be completely unrelated but do check your MTU settings on your connection. Sites which require SSL need to be able to transfer large packet payload sizes.

I'll 2nd/3rd what has been said above, it's unlikely to be a firewall rule unless you're doing something very wrong :)

794 posts

Ultimate Geek


  #344833 24-Jun-2010 11:22
Send private message

Most problems were derived from broken firewalls blocking ICMP and preventing PMTU from working properly, IIRC.  ISA is pretty good at keeping SSL working out of the box, though.

No signature to see here, move along...

Create new topic

News »

Nanoleaf enhances lighting line with launch of Triangles and Mini Triangles
Posted 17-Oct-2020 20:18

Synology unveils DS16211+
Posted 17-Oct-2020 20:12

Ingram Micro introduces FootfallCam to New Zealand channel
Posted 17-Oct-2020 20:06

Dropbox adopts Virtual First working policy
Posted 17-Oct-2020 19:47

OPPO announces Reno4 Series 5G line-up in NZ
Posted 16-Oct-2020 08:52

Microsoft Highway to a Hundred expands to Asia Pacific
Posted 14-Oct-2020 09:34

Spark turns on 5G in Auckland
Posted 14-Oct-2020 09:29

AMD Launches AMD Ryzen 5000 Series Desktop Processors
Posted 9-Oct-2020 10:13

Teletrac Navman launches integrated multi-camera solution for transport and logistics industry
Posted 8-Oct-2020 10:57

Farmside hits 10,000 RBI customers
Posted 7-Oct-2020 15:32

NordVPN starts deploying colocated servers
Posted 7-Oct-2020 09:00

Google introduces Nest Wifi routers in New Zealand
Posted 7-Oct-2020 05:00

Orcon to bundle Google Nest Wifi router with new accounts
Posted 7-Oct-2020 05:00

Epay and Centrapay partner to create digital gift cards
Posted 2-Oct-2020 17:34

Inseego launches 5G MiFi M2000 mobile hotspot
Posted 2-Oct-2020 14:53

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.