• Article

Configure Web Publishing Rules

Microsoft Office Communications Server 2007 and Microsoft Office Communications Server 2007 R2 will reach end of support on January 9, 2018. To stay supported, you will need to upgrade. For more information, see Resources to help you upgrade your Office 2007 servers and clients.

Use the following procedure to create Web publishing rules.

Note

This procedure assumes that ISA Server 2006 Standard Edition is installed.

To create a Web server publishing rule on the ISA Server 2006 computer

  1. Click Start, point to Programs, point to Microsoft ISA Server, and then click ISA Server Management.

  2. In the left pane, expand ServerName, right-click Firewall Policy, point to New, and then click Web Site Publishing Rule.

  3. On the Welcome to the New Web Publishing Rule page, enter a friendly name for the publishing rule, and then click Next. For example, the name of the rule can be OfficeCommunicationsWebDownloadsRule.

  4. On the Select Rule Action page, select Allow, and then click Next.

  5. On the Publishing Type page, select Publish a single Web site or load balancer, and then click Next.

  6. On the Server Connection Security page, select Use SSL to connect to the published Web server or server farm, and then click Next.

  7. On the Internal Publishing Details page, enter the FQDN of the internal Web farm that hosts the Software Update Service in the Internal Site name box, and then click Next.

  8. On the Internal Publishing Details page, enter /* as the path of the folder to be published in the Path (optional) box, and then click Next.

    Note

    The ISA Server must be able to resolve the FQDN to the IP address of the internal Web server. If the ISA Server is not able to resolve the FQDN to the proper IP address, you can select Use a computer name or IP address to connect to the published server, and then enter the IP address of the internal Web server in the Computer name or IP address box. If you do this, you must ensure that the ISA Server has port 53 opened and can reach an internal DNS server or a DNS server that resides in the perimeter network.
    If your internal server is a Standard Edition, this FQDN is the Standard Edition server FQDN.
    If your internal server is an Enterprise pool, this FQDN is the internal Web farm FQDN.

    Note

    In the Web site publishing wizard you can only specify one path. Additional paths can be added by modifying the properties of the rule.

  9. On the Publish Name Details page, confirm that This domain name is selected for Accept Requests for, type the external Web farm FQDN for the Software Update Service in the Public Name box, and then click Next.

  10. On the Select Web Listener page, click New to create a new Web listener.

  11. On the Welcome to the New Web Listener Wizard page, type a name for the Web listener in the Web listener name box, and then click Next. For example, type Web Servers.

  12. On the Client Connection Security page, select Require SSL secured connections with clients, and then click Next.

  13. On the Web Listener IP Address page, select External, and then click Select IP Addresses.

  14. On the External Listener IP selection page, select Specified IP address on the ISA Server computer in the selected network, select the appropriate IP address, click Add, and then click OK.

  15. Click Next.

  16. On the Listener SSL Certificates page, select Assign a certificate for each IP address, select the IP address you just added, and then click Select Certificate.

  17. On the Select Certificate page, select the certificate that matches the public name specified in step 10, click Select, and then click Next.

  18. On the Authentication Setting page, select No Authentication, and then click Next.

  19. On the Single Sign On Setting page, click Next.

  20. On the Completing the Web Listener Wizard page, review the Web listener settings, and then click Finish.

  21. Click Next.

  22. On the Authentication Delegation page, select No delegation, but the client might authenticate directly, and then click Next.

  23. On the User Set page, click Next.

  24. On the Completing the New Web Publishing Rule Wizard page, review the Web publishing rule settings, and then click Finish.

  25. In the details pane, click Apply to save the changes and update the configuration.

To create a Web server publishing rule on the ISA Server 2006 computer for the SharePoint site

  1. Click Start, point to Programs, point to Microsoft ISA Server, and then click ISA Server Management.

  2. In the left pane, expand ServerName, right-click Firewall Policy, point to New, and then click Web Site Publishing Rule.

  3. On the Welcome to the New Web Publishing Rule page, enter a friendly name for the publishing rule, and then click Next. For example, the name of the rule can be OfficeCommunicationsWebDownloadsRule.

  4. On the Select Rule Action page, select Allow, and then click Next.

  5. On the Publishing Type page, select Publish a single Web site or load balancer, and then click Next.

  6. On the Server Connection Security page, select Use SSL to connect to the published Web server or server farm, and then click Next.

  7. On the Internal Publishing Details page, enter the internal FQDN of the SharePoint Server hosting the Software Update Service site in the Internal Site name box, and then click Next.

  8. On the Internal Publishing Details page, enter /* as the path of the folder to be published in the Path (optional) box, and then click Next.

    Note

    The ISA Server must be able to resolve the FQDN to the IP address of the internal Web server. If the ISA Server is not able to resolve the FQDN to the proper IP address, you can select Use a computer name or IP address to connect to the published server, and then in the Computer name or IP address box, enter the IP address of the internal Web server. If you do this, you must ensure that the ISA Server has port 53 opened and can reach an internal DNS server or a DNS server that resides in the perimeter network.

    Note

    In the Web site publishing wizard you can only specify one path. Additional paths can be added by modifying the properties of the rule.

  9. On the Publish Name Details page, confirm that This domain name is selected for Accept Requests for, type the external FQDN for the SharePoint Server hosting the Software Update Service site in the Public Name box, and then click Next.

  10. On the Select Web Listener page, click New to create a new Web listener.

  11. On the Welcome to the New Web Listener Wizard page, type a name for the Web listener in the Web listener name box, and then click Next. For example, type Web Servers.

  12. On the Client Connection Security page, select Require SSL secured connections with clients, and then click Next.

  13. On the Web Listener IP Address page, select External, and then click Select IP Addresses.

  14. On the External Listener IP selection page, select Specified IP address on the ISA Server in the selected network, select the appropriate IP address, click Add, and then click OK.

  15. Click Next.

  16. On the Listener SSL Certificates page, select Assign a certificate for each IP address, select the IP address you just added, and then click Select Certificate.

  17. On the Select Certificate page, select the certificate that matches the public name specified in step 9, click Select, and then click Next.

  18. On the Authentication Setting page, select No Authentication, and then click Next.

  19. On the Single Sign On Setting page, click Next.

  20. On the Completing the Web Listener Wizard page, review the Web listener settings, and then click Finish.

  21. Click Next.

  22. On the Authentication Delegation page, select No delegation, but the client might authenticate directly, and then click Next.

  23. On the User Set page, click Next.

  24. On the Completing the New Web Publishing Rule Wizard page, review the Web publishing rule settings, and then click Finish.

  25. In the details pane, click Apply in the details pane.

To modify the properties of the Web publishing rule

  1. Click Start, point to Programs, point to Microsoft ISA Server, and then click ISA Server Management.

  2. In the left pane, expand ServerName, and then click Firewall Policy.

  3. In the details pane, right-click the secure Web server publishing rule that you created in the previous procedure (for example, OfficeCommunicationsServerExternal Rule), and then click Properties.

  4. On the Properties page, click the From tab, and then:

    • In the This rule applies to traffic from these sources list, click Anywhere, and then click Remove.

    • Click Add.

    • In the Add Network Entities dialog box, expand Networks, click External, click Add, and then click Close.

  5. If you need to publish another path on the Web server, click the Paths tab.

  6. Click Add, type /* for the path to be published, and then click OK.

  7. Click Apply to save changes, and then click OK.

  8. In the details pane, click Apply to save the changes and update the configuration.