Hi
After many issues with this Certificates. I think i have correct all the problems, between Exchange and Certificates
Issues that i have asked in this threats.
http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_24078184.htmlhttp://www.experts-exchange.com/Microsoft/Windows_Security/Q_24084232.htmlAfter changing the internal address, all is ok, i have an issue with the Ceriticate.
In the Exchange and ISA Server the Certificates are all correct, and all have Root Authority ok
When i test the publishing rule i get
Testing URL
https://webmail.mydomain.com:443/Exchange/Category: General error
Error details: 0x80092010 - The certificate is revoked.
Action: Go to
http://go.microsoft.com/fwlink/?LinkId=115965In the outside world when i enter the webmail page, i can see the login age from the Exchange/ISA Server. To test the communication, If enter an invalid user, or domain, the authentication work fine, and says user/password wrong, when i enter the right i gives me a page error with
* Error Code: 500 Internal Server Error. The certificate is revoked. (-2146885616)
I have test the ISA Server with the traffic simulator
I get this error:
Denied Traffic
- destination URL host name could not be resolved
Rule Name: [Enterprise] Default rule
Rule Order:
Additional information
From: Local Host
To: Internal
Network Rule Name: None - Route implied (Local Host traffic)
Network Relationship: Route
Protocol: HTTPS
Rule Application Filter:
This is the log from that traffic:
##########################
384 19-02-2009 16:41:12 fffca7bc Firewall service The Firewall service is performing rule evaluation.
385 19-02-2009 16:41:12 fffca7bc Firewall service Protocol: HTTPS
386 19-02-2009 16:41:12 fffca7bc Firewall Engine Packet properties: Source IP address: 192.168.10.250 Source array network: Local Host Destination IP address: 192.168.10.08 Destination array network: Internal
387 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server will check only rules that are associated with the protocol HTTPS.
388 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server is evaluating the rule [System] Allow HTTP/HTTPS from ISA Server to specified Microsoft error reporting sites.
389 19-02-2009 16:41:12 fffca7bc Firewall service The destination requires name resolution.
390 19-02-2009 16:41:12 fffca7bc Firewall service The rule [System] Allow HTTP/HTTPS from ISA Server to specified Microsoft error reporting sites requires name resolution for evaluation.
391 19-02-2009 16:41:12 fffca7bc Firewall service The rule [System] Allow HTTP/HTTPS from ISA Server to specified Microsoft error reporting sites requires DNS name resolution.
392 19-02-2009 16:41:12 fffca7bc Firewall service The Firewall service is performing rule evaluation.
393 19-02-2009 16:41:12 fffca7bc Firewall service Protocol: HTTPS
394 19-02-2009 16:41:12 fffca7bc Firewall Engine Packet properties: Source IP address: 192.168.10.250 Source array network: Local Host Destination IP address: 192.168.10.08 Destination array network: Internal
395 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server will check only rules that are associated with the protocol HTTPS.
396 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server is evaluating the rule [System] Allow HTTP/HTTPS from ISA Server to specified Microsoft error reporting sites.
397 19-02-2009 16:41:12 fffca7bc Firewall service destination does not match the packet.
398 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server is evaluating the rule [System] Allow HTTP/HTTPS requests from ISA Server to specified sites.
399 19-02-2009 16:41:12 fffca7bc Firewall service destination does not match the packet.
400 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server is evaluating the rule [System] Allow MS Firewall Control communication to selected computers.
401 19-02-2009 16:41:12 fffca7bc Firewall service destination does not match the packet.
402 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server is evaluating the rule Internet Access.
403 19-02-2009 16:41:12 fffca7bc Firewall service source does not match the packet.
404 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server is evaluating the rule [Enterprise] Default rule.
405 19-02-2009 16:41:12 fffca7bc Firewall service The rule [Enterprise] Default rule matches the packet and may deny it. However, a rule that precedes this rule in the list of policy rules and matches the packet will take precedence and may allow the packet.
406 19-02-2009 16:41:12 fffca7bc Firewall service The rule [Enterprise] Default rule blocked the packet.
407 19-02-2009 16:41:12 fffca7bc Firewall service The Firewall service is performing rule evaluation.
408 19-02-2009 16:41:12 fffca7bc Firewall Engine Packet properties: Source IP address: 192.168.10.250 Source array network: Local Host Destination IP address: 192.168.10.08 Destination array network: Internal
409 19-02-2009 16:41:12 fffca7bc Firewall service ISA Server is looking for an applicable network rule.
410 19-02-2009 16:41:12 fffca7bc Firewall service The packet was sent to or from the Local Host network. Therefore, an implicit network rule with a route relationship between the source and destination is applied.
#####################
The 192.168.10.250 is my internal ISA Server adapter, and the 192.168.10.08 is my Exchange Server
An i have tested with my external adapter (192.168.100.253). The log is similar
Sincerely i cannot understand what is causing this. I have check all the configuration and i think all is ok
Any help will be appreciated
Jail