danniox
asked on
ISA SERVER: no access to website
I'm using Microsoft Internet Security And Acceleration Server 2000 (Standard Edition). No experience with it. It was installed by another company with which we keep no contact anymore.
So I'm alone.
THE PROBLEM IS: Isa Server clients want to access a website which makes use of port 9003 and SSL. That is to say: website (or socket) is something like https://...:9003. Nobody can't. All other web resources are correctely accessed through Isa Server.
I know there is no problem with machine that is routing to Internet, because I have connected a pc directly onto the router and this website is correctly accessed. So, no problem beyond Isa Server.
In order to solve the matter, I have created a protocol definition which manages access from everybody to Internet pointing to port 9003. I have also created protocol rule which makes use of this protocol definition.
No success so far.
I know there are two installation modes for Isa Server: security and cache. I don't even know what mode we're using. I don't know whether this has anything to do with it.
Any help would be appreciated.
So I'm alone.
THE PROBLEM IS: Isa Server clients want to access a website which makes use of port 9003 and SSL. That is to say: website (or socket) is something like https://...:9003. Nobody can't. All other web resources are correctely accessed through Isa Server.
I know there is no problem with machine that is routing to Internet, because I have connected a pc directly onto the router and this website is correctly accessed. So, no problem beyond Isa Server.
In order to solve the matter, I have created a protocol definition which manages access from everybody to Internet pointing to port 9003. I have also created protocol rule which makes use of this protocol definition.
No success so far.
I know there are two installation modes for Isa Server: security and cache. I don't even know what mode we're using. I don't know whether this has anything to do with it.
Any help would be appreciated.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
http://support.microsoft.com/default.aspx?scid=kb;en-us;283284
It appears that you have to update the range of ports that SSL will work on your ISA Server machine.
SSL is normally expected to be invoked through port 443. If you happen to have to accept outbound requests with SSL up to another port (for instance, 9003), you have to add that port to the range of ports for SSL.
You have to do that updating the registry of the very same machine where ISA Server is running. The registry key is something like HKLM\SOFTWARE\Microsoft\Fp
This is easily accomplished through a VBScript.