Re: Does ASP.Net v.1.1 Forms authentication mode require port 80 for http?

From: Thomas H (thomash_03_at_yahoo.com)
Date: 12/11/03

• Next message: Isaias Formacio Serna: "Problem accessing Windows 2003 DC Registry Keys"
• Previous message: Joe Audette: "ASP.NET Forms Authentication Via A SQL Server Database With Windows User types?"
• In reply to: Michael Coughlin: "Does ASP.Net v.1.1 Forms authentication mode require port 80 for http?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 10 Dec 2003 18:13:47 -0500

If you have a Win2k/2003 server, what about creating a VPN for your client? Then they could tunnel into your home/office, and use whatever port they wanted to. PPTP uses port 1723, as defined by http://www.iana.org . (Full list at http://www.iana.org/assignments/port-numbers ) Quick & dirty test; set up a web site on your server, but change the properties/identification tab to use port 1723.

Or.. along the same lines, I guess... change your web server to use another port, one that isn't blocked, preferably something in the private/dynamic range.

It doesn't quite answer your question, but maybe it presents an easier alternative.

-TH
  "Michael Coughlin" <noSpam@anywhere.net> wrote in message news:eqg5g4GvDHA.2360@TK2MSFTNGP10.phx.gbl...
  I'm trying to do a "proof-of-concept" ASP.Net setup from my home/office.

  Since my ISP blocks port 80 - to prevent high-bandwidth serving from residential accounts, I used the cable router to redirect another port (coming in) back to port 80, once inside my LAN.

  My client (halfway across the country) can get to the default page (which has no security restrictions, yet). When they click to my .aspx pages, which work fine behind the router, ... nada. IE "needs to shut down"; Netscape just goes back to the default page. Ballgame over.

  To experiment, I set one .aspx page to:
      <authentication mode="None" />
      <authorization>

              <allow users="*" /> i.e. allow all users

  The other pages use:
      <authentication mode="Forms" />
              <forms loginUrl="login.aspx" />

      <authorization>

              <deny users="?" /> <!-- Deny anonymous users -->

  So, I was wondering if the http port redirection might be somehow messing up ASP.Net security?

  Any insights ... appreciated ...

  thanks,
  Mike

  ---
  Outgoing mail is certified Virus Free.
  Checked by AVG anti-virus system (http://www.grisoft.com).
  Version: 6.0.543 / Virus Database: 337 - Release Date: 11/21/2003

---

• Next message: Isaias Formacio Serna: "Problem accessing Windows 2003 DC Registry Keys"
• Previous message: Joe Audette: "ASP.NET Forms Authentication Via A SQL Server Database With Windows User types?"
• In reply to: Michael Coughlin: "Does ASP.Net v.1.1 Forms authentication mode require port 80 for http?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Datagrid Checkbox Column ... > any idea why my checkbox seems to have 3 states, True, false and DBNull ... >> Outgoing mail is certified Virus Free. ... (microsoft.public.dotnet.languages.vb) Re: Q824143 -- how to get patch?!? ... Mike for your last two replies - understood on both counts. ... >> Microsoft MVP Scripting and WMI, ... > Outgoing mail is certified Virus Free. ... (microsoft.public.security) FA: Hyundai HT15x11-100 for IBM Netvista ... Outgoing mail is certified Virus Free. ... Checked by AVG anti-virus system. ... (sci.electronics.repair) Re: Olympus C-700 Service Manual or Schematic? ... > Holy smokes, Mike!!! ... >> with any of the large electronic catalog houses. ... >> Outgoing mail is certified Virus Free. ... (sci.electronics.repair) help setting up router firewall ... Mike ... Outgoing mail is certified Virus Free. ... Checked by AVG anti-virus system. ... (comp.security.firewalls)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)