Forefront encryption

view story

http://serverfault.com – My Forefront server blocks access to all encrypted websites not running under port 443. This is extremely annoying. Based on my research it appears that the isa_tpr.js script can be used to add additional ports to the tunneling range. I don't want to have to continuously continue adding ports to this range and rebooting my firewall whenever one of my application developers uses a new port number. What are the security and performance implications for simply allowing ports 1-65535? Would doing this break anything? (HowTos)