Solved

Internet Security + App Server Error Log - HELP!

Posted on 2001-07-03
3
218 Views
Last Modified: 2010-04-13
We've installed it as Firewall and web proxy, but keep getting the following errors in our application log (the ip address changes each time). I've even tried putting just the server ip in the LAT, but still each IP reports a fault!

Event Type:     Error
Event Source:     Microsoft Web Proxy
Event Category:     None
Event ID:     14120
Date:          03/07/2001
Time:          14:17:36
User:          N/A
Computer:     APEX
Description:
The ISA Server services cannot create a packet filter 64.152.4.80. This event occurs when there is a conflict between the Local Address Table (LAT) configuration and the Windows 2000 routing table. Check the routing table and the LAT to find the source of the conflict.
Data:
0000: 00000015

Can anyone shed any light on this?!?

thanks!
0
Comment
Question by:bengriffiths
3 Comments
 

Accepted Solution

by:
sigreti earned 200 total points
ID: 6802712
Ben,
Read the article listed below

ISA Server Event 14120 Is Logged and Packet Filter Cannot Be Created (Q288396)

--------------------------------------------------------------------------------
The information in this article applies to:


Microsoft Internet Security and Acceleration Server 2000


--------------------------------------------------------------------------------


SYMPTOMS
The following error is logged in Event Viewer because there is a conflict with the Local Address Table (LAT) in Internet Security and Acceleration (ISA) Server 2000 and the routing table:

Event Type: Error
Event Source: Microsoft Web Proxy
Event Category: None
Event ID: 14120
Date: 4/18/2001
Time: 2:08:35 PM
User: N/A
Computer: computer name
Description:

The ISA Server services cannot create a packet filter 24.25.66.26. This event occurs when there is a conflict between the LAT configuration and the Windows 2000 routing table. Check the routing table and the LAT to find the source of the conflict.

Data:
0000: 41 01 00 c0
The data area also translates to error "0xc000141", or "(dec): 3072 321". If the LAT does not have a conflict with the local routing table (for example, if you set the LAT correctly to only include the IP addresses of all internal interfaces) you may see this event error under the following circumstances:
You have configured ISA Web publishing to an internal Web server, or to the local IIS server on the ISA server.


An internal client requests the Web site using a fully qualified domain name (FQDN) that resolves to the external IP address of ISA.


ISA has both NICs in the same segment and outbound packets go out through the same NIC where the client's request arrived (because that is where the default gateway is configured).





CAUSE
This behavior occurs because when the ISA Web service listens on the external IP address on behalf of the Web server, and the internal client tries to access that service, Web proxy tries to create a packet filter for that address because the proxy views that the address as external (which it is). The packet filter driver fails to create the filter because the address is not reachable through the external interface; instead, the address is reachable through the loopback interface. The result is the event log entry.



RESOLUTION
Although you can ignore this event, you can also resolve this behavior. To do so, on the DNS server that is being used for internal name resolution, create a host record (A record) for the fully qualified domain name that is used by internal users and that resolves to the internal IP address or the IP address of the Web server on which the Web site is hosted.


--------------------------------------------------------------------------------
Published Jul 11 2001 11:49AM  Issue Type kbprb  
Last Modifed Feb 4 2002 8:47AM  Additional Query Words  
Keywords kbenv kberrmsg  

--------------------------------------------------------------------------------

COMMENTS?

If you would like to briefly comment on this article, you can enter your remarks in the space below (up to 255 characters).

 
Submit Comments  
0
 
LVL 1

Expert Comment

by:Computer101
ID: 7152477
Hello all,
I am Computer101, a moderator from Experts-Exchange. This question has been open a long time.  What I am going to do is allow feedback from the questioner and experts or hope that the questioner comes back to close this question.  If it is not resolved, I will delete or accept an answer based on the info I have been given, Experts, feel free to offer input.  I will monitor these questions for a period of 5-7 days and come back and evaluate.  

Thank you
Computer101
Community Support Moderator
0
 

Expert Comment

by:SpideyMod
ID: 8276903
Force Accepted

SpideyMod
Community Support Moderator @Experts Exchange
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Knowing where your website is hosted is as important as the features you receive, the monthly fee, and the support you receive. Due diligence should be done when choosing your next hosting provider.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

778 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question