Microsoft KB Archive/284554

= How To Add Support for MSN Messenger Net2Phone in Internet Security and Acceleration Server 2000 =

Article ID: 284554

Article Last Modified on 11/22/2006

-

APPLIES TO


 * Microsoft BackOffice Server 2000
 * Microsoft Internet Security and Acceleration Server 2000 Standard Edition
 * Microsoft Small Business Server 2000 Standard Edition

-



This article was previously published under Q284554



IN THIS TASK
SUMMARY Provide Support for Net2Phone
 * Create a Protocol Definition
 * Create a Protocol Rule
 * Edit the Firewall Client Configuration File

REFERENCES



SYMPTOMS
This article describes how to add support for the MSN Messenger Net2Phone feature in Microsoft Internet Security and Acceleration (ISA) Server 2000.

back to the top



Provide Support for Net2Phone
To provide support for the Net2Phone feature in MSN Messenger, create the following custom protocol definition for MSN Messenger to provide support for Net2Phone connections:
 * Primary Connection:

Port number: 1863

Protocol type: TCP

Direction: Outbound
 * Secondary Connections:

Port range: From 5004 to 65535

Protocol type: UDP

Direction: Send Receive

Port range: From 6891 to 6900

Protocol type: TCP

Direction: Inbound

Port range: From 6891 to 6900

Protocol type: TCP

Direction: Outbound

Port range: From 6901 to 6901

Protocol type: TCP

Direction: Outbound

Create the following protocol rule to permit the MSN Messenger and Net2Phone protocols:
 * MSN Messenger and Net2Phone

Rule Applies to: Selected protocols

Protocols:   (where  is the new custom MSN Messenger protocol that you created) and Net2Phone.

Applies to: Any request

Edit the Firewall Client initialization file to add the following information:

[msmsgs] NameResolutionForLocalHost=E RemoteBindUDPPorts=0,6901

back to the top

Create a Protocol Definition
Create a new custom protocol to define MSN Messenger and the Net2Phone feature. To do so:
 * 1) Start the ISA Management snap-in. To do this, click Start, point to Programs, point to Microsoft ISA Server, and then click ISA Management.
 * 2) Locate the Protocol Definitions container under Policy Elements.
 * 3) Right-click Protocol Definitions, point to New, and then click Definition.
 * 4) In the Protocol definition name box, type a descriptive name for the definition (for example, type New MSN Messenger ), and then click Next.
 * 5) In the Port number box, type 1863, select the TCP option in the Protocol type list (if it is not already selected), select the Outbound option in the Direction list (if it is not already selected), and then click Next.
 * 6) Under Do you want to use Secondary connections?, click Yes.
 * 7) Click New, type 5004 in the From box, type 65535 in the To box, click UDP in the Protocol type list, click Send Receive in the Direction list, and then click OK.

Note Make sure that you click Send Receive and not Receive Send in the Direction list.
 * 1) Click New, type 6891 in the From box, type 6900 in the To box, click TCP in the Protocol type list, click Inbound in the Direction list, and then click OK.
 * 2) Click New, type 6891 in the From box, type 6900 in the To box, click TCP in the Protocol type list, click Outbound in the Direction list, and then click OK.
 * 3) Click New, type 6901 in the From box, type 6901 in the To box, click TCP in the Protocol type list, click Outbound in the Direction list, and then click OK.
 * 4) Click Next, confirm your settings, and then click Finish.

The new custom protocol is listed in the right pane under Available Protocols.

back to the top

Create a Protocol Rule
Create a protocol rule to allow access by using the new custom protocol that you created. To do so:  Start the ISA Management snap-in. To do this, click Start, point to Programs, point to Microsoft ISA Server, and then click ISA Management. Locate the Protocol Rules container under Access Policy. Right-click Protocol Rules, point to New, and then click Rule. In the Protocol rule name box, type a name for the rule (for example, type MSN Messenger and Net2Phone ), and then click Next. Select the Allow option (if it is not already selected), and then click Next. In the Apply this rule to list, click Selected protocols.</li> Click to select the following check boxes in the Protocols list:

Net2Phone

 

Where  is the new custom MSN Messenger protocol that you previously created.</li> Click Next, click the schedule that you want to use when allowing this protocol, in the Use this schedule list (for example, click Always), and then click Next.</li> Under Apply the rule to requests from, select Any request (if it is not already selected), and then click Next.</li> Confirm the configuration selections, and then click Finish.</li></ol>

The new protocol rule is listed under Available Protocol Rules in the right pane.

back to the top

Edit the Firewall Client Configuration File
Edit the Firewall Client configuration file (Mspclnt.ini). To do so: <ol> Open the Mspclnt.ini file by using a text editor such as Notepad. By default, this file is stored in the following location:

C:\Program Files\Microsoft ISA Server\CLIENTS

</li> Add the following section heading and information at the bottom of the file:

[msmsgs]

NameResolutionForLocalHost=E

RemoteBindUDPPorts=0,6901

</li> Save your changes to the file, and then close it.</li></ol>

back to the top

<div class="references_section">