December 5, 2008 07:27am pst

1. keith_ala... 663,026
2. MrMander... 169,785
3. EricTViking 85,505
4. TechSoEasy 50,774
5. Nyah247 49,039
6. RobWill 47,721
7. toniur 39,714
8. KCTS 34,045
9. nfmartins 27,952
10. tigermatt 27,542
11. r-k 24,055
12. Redwulf... 22,651
13. arnold 22,340
14. lavionline 21,725
15. oBdA 21,100
16. war1 19,850
17. rpggamer... 18,098
18. johnb6767 17,245
19. tedbilly 17,000
20. Hisham_... 16,807
21. kieran_b 16,750
22. Sembee 15,858
23. cheeselov... 15,375
24. martin_b... 15,187
25. plug1 14,700

1. keith_ala... 1,484,887
2. MrMander... 179,710
3. TechSoEasy 132,046
4. r-k 111,388
5. toniur 98,814
6. EricTViking 85,505
7. What90 72,897
8. Nyah247 69,369
9. RobWill 63,380
10. KCTS 61,622
11. richrumble 58,834
12. Sembee 50,060
13. war1 44,050
14. PowerIT 41,666
15. johnb6767 39,520
16. lrmoore 37,711
17. rpggamer... 33,402
18. oBdA 33,250
19. tigermatt 30,042
20. LauraEHu... 29,262
21. nfmartins 27,952
22. MrHusy 26,519
23. Bembi 25,968
24. tedbilly 24,250
25. Redwulf... 24,151

08.27.2007 at 09:23AM PDT, ID: 22789413

	[x] Attachment Details

[x]

The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

The Grade of the Solution
The Zone Rank of the Expert Providing the Solution
The Number of Author and Expert Comments
The Number of Experts Contributing
The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!

6.6

ISA not auto failing over

Asked by Silverthorn21 in MS Forefront-ISA, Network Software Firewalls, Windows Networking

Tags: address, associated, been, isa

Hi All,

ISA server not auto failing over to the other.

I have two ISA servers ISA1 and ISA2. I have a deticated DC that is running DHCP, WINS, DNS & now the CSS service for the ISA servers. Each ISA server has two nic's; one external, one internal. Both servers are 2003 server enterprise with ISA 2006 Enterprise. All service packs & critical & recommended updates have been installed for the W2K3 OS. No updates (i haven't found any as of yet) for the ISA 2006 servers.

Both servers are in the array BC-HO-Firewall
bc-ho-ISA1 - 10.10.10.253 int 64.251.65.202 ext T1
bc-ho-ISA2 - 10.10.10.252 int 208.181.243.157 ext DSL
NLB to 10.10.10.251 (Used ISA 2006 wizard to do this) Internal only

Two rules:
      Allow all outgoing network traffic
      Block all incoming traffic

Everything works and it is NLB'ing (I think) until I unplugg one of the external connections to simulate a failure. If I unplug ISA2 external connection when I browse any sites that have previously gone through that server I get the following message

Technical Information (for support personnel)
      Error Code: 502 Proxy Error. An address has not yet been associated with the network endpoint. (1228)
      IP Address: 72.14.253.103
      Date: 8/27/2007 4:07:37 PM [GMT]
      Server: bc-ho-isa2.internal.natursfare.com
      Source: proxy

I'm using a firewall client.

Intra array communication is occurring on the 10.10.10.25x IP (tried using a 192.168.10.x but it kept losing communication)

here is the routing table for ISA1

IPv4 Route Table
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...02 bf 0a 0a 0a fb ...... Realtek RTL8168/8111 PCI-E Gigabit Ethernet NIC - Network Load Balancing Filter Device
0x10004 ...00 17 9a 05 0b c0 ...... D-Link DFE-530TX PCI Fast Ethernet Adapter (rev.C)
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 64.251.65.201 64.251.65.202 20
10.10.10.0 255.255.255.0 10.10.10.253 10.10.10.253 20
10.10.10.251 255.255.255.255 127.0.0.1 127.0.0.1 20
10.10.10.253 255.255.255.255 127.0.0.1 127.0.0.1 20
10.255.255.255 255.255.255.255 10.10.10.253 10.10.10.253 20
64.251.65.200 255.255.255.248 64.251.65.202 64.251.65.202 20
64.251.65.202 255.255.255.255 127.0.0.1 127.0.0.1 20
64.255.255.255 255.255.255.255 64.251.65.202 64.251.65.202 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
224.0.0.0 240.0.0.0 10.10.10.253 10.10.10.253 20
224.0.0.0 240.0.0.0 64.251.65.202 64.251.65.202 20
255.255.255.255 255.255.255.255 10.10.10.253 10.10.10.253 1
255.255.255.255 255.255.255.255 64.251.65.202 64.251.65.202 1
Default Gateway: 64.251.65.201
===========================================================================
Persistent Routes:
None

Here is the routing table for ISA2

IPv4 Route Table
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...02 bf 0a 0a 0a fb ...... NVIDIA nForce Networking Controller - Network Load Balancing Filter Device
0x10004 ...00 17 9a 3b 4d dc ...... Realtek RTL8139 Family PCI Fast Ethernet NIC
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
10.10.10.0 255.255.255.0 10.10.10.252 10.10.10.252 20
10.10.10.251 255.255.255.255 127.0.0.1 127.0.0.1 20
10.10.10.252 255.255.255.255 127.0.0.1 127.0.0.1 20
10.255.255.255 255.255.255.255 10.10.10.252 10.10.10.252 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
224.0.0.0 240.0.0.0 10.10.10.252 10.10.10.252 20
255.255.255.255 255.255.255.255 10.10.10.251 10004 1
255.255.255.255 255.255.255.255 10.10.10.252 10.10.10.252 1
===========================================================================
Persistent Routes:
None

Am I missing something???? new to ISA server and NLB so i'm not sure what is the issue. Also I would like to use VPN failover (my other sites have only 1 server in the array) Please help ASAP

DanStart Free Trial

Keywords: ISA not auto failing over

	Title
1	ISA 2006 and VPN
2	Two problems with installation of ISA s…
3	install ISA after firewall
4	ISA 2006 EE and VPN
5	ISA Proxy and Smoothwall not talking
6	ISA - Linksys Site to Site VPN Issues

Loading Advertisement...

20081112-EE-VQP-43 / EE_QW_1_20070628

ISA not auto failing over

Asked by Silverthorn21 in MS Forefront-ISA, Network Software Firewalls, Windows Networking

Tags: address, associated, been, isa

About this solution