Solved

Internet Security + App Server Error Log - HELP!

Posted on 2001-07-03
3
206 Views
Last Modified: 2010-04-13
We've installed it as Firewall and web proxy, but keep getting the following errors in our application log (the ip address changes each time). I've even tried putting just the server ip in the LAT, but still each IP reports a fault!

Event Type:     Error
Event Source:     Microsoft Web Proxy
Event Category:     None
Event ID:     14120
Date:          03/07/2001
Time:          14:17:36
User:          N/A
Computer:     APEX
Description:
The ISA Server services cannot create a packet filter 64.152.4.80. This event occurs when there is a conflict between the Local Address Table (LAT) configuration and the Windows 2000 routing table. Check the routing table and the LAT to find the source of the conflict.
Data:
0000: 00000015

Can anyone shed any light on this?!?

thanks!
0
Comment
Question by:bengriffiths
3 Comments
 

Accepted Solution

by:
sigreti earned 200 total points
Comment Utility
Ben,
Read the article listed below

ISA Server Event 14120 Is Logged and Packet Filter Cannot Be Created (Q288396)

--------------------------------------------------------------------------------
The information in this article applies to:


Microsoft Internet Security and Acceleration Server 2000


--------------------------------------------------------------------------------


SYMPTOMS
The following error is logged in Event Viewer because there is a conflict with the Local Address Table (LAT) in Internet Security and Acceleration (ISA) Server 2000 and the routing table:

Event Type: Error
Event Source: Microsoft Web Proxy
Event Category: None
Event ID: 14120
Date: 4/18/2001
Time: 2:08:35 PM
User: N/A
Computer: computer name
Description:

The ISA Server services cannot create a packet filter 24.25.66.26. This event occurs when there is a conflict between the LAT configuration and the Windows 2000 routing table. Check the routing table and the LAT to find the source of the conflict.

Data:
0000: 41 01 00 c0
The data area also translates to error "0xc000141", or "(dec): 3072 321". If the LAT does not have a conflict with the local routing table (for example, if you set the LAT correctly to only include the IP addresses of all internal interfaces) you may see this event error under the following circumstances:
You have configured ISA Web publishing to an internal Web server, or to the local IIS server on the ISA server.


An internal client requests the Web site using a fully qualified domain name (FQDN) that resolves to the external IP address of ISA.


ISA has both NICs in the same segment and outbound packets go out through the same NIC where the client's request arrived (because that is where the default gateway is configured).





CAUSE
This behavior occurs because when the ISA Web service listens on the external IP address on behalf of the Web server, and the internal client tries to access that service, Web proxy tries to create a packet filter for that address because the proxy views that the address as external (which it is). The packet filter driver fails to create the filter because the address is not reachable through the external interface; instead, the address is reachable through the loopback interface. The result is the event log entry.



RESOLUTION
Although you can ignore this event, you can also resolve this behavior. To do so, on the DNS server that is being used for internal name resolution, create a host record (A record) for the fully qualified domain name that is used by internal users and that resolves to the internal IP address or the IP address of the Web server on which the Web site is hosted.


--------------------------------------------------------------------------------
Published Jul 11 2001 11:49AM  Issue Type kbprb  
Last Modifed Feb 4 2002 8:47AM  Additional Query Words  
Keywords kbenv kberrmsg  

--------------------------------------------------------------------------------

COMMENTS?

If you would like to briefly comment on this article, you can enter your remarks in the space below (up to 255 characters).

 
Submit Comments  
0
 
LVL 1

Expert Comment

by:Computer101
Comment Utility
Hello all,
I am Computer101, a moderator from Experts-Exchange. This question has been open a long time.  What I am going to do is allow feedback from the questioner and experts or hope that the questioner comes back to close this question.  If it is not resolved, I will delete or accept an answer based on the info I have been given, Experts, feel free to offer input.  I will monitor these questions for a period of 5-7 days and come back and evaluate.  

Thank you
Computer101
Community Support Moderator
0
 

Expert Comment

by:SpideyMod
Comment Utility
Force Accepted

SpideyMod
Community Support Moderator @Experts Exchange
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now