ISA 2004 Server Stops Traffic, Requires Reboot
Posted on 2006-06-26
Hi i am working with an ISA 2004 firewall that i did not personally setup. Every month or two i get a call and the client states that they cannot reach the internet. The box is reachable but it seems the web and firewall proxy services stop allowing traffic. A Reboot has fixed the problem everytime to date, but i want to try and resolve the issue.
The following errors appear around the time the issue occurs, but i also see them happening on a routine basis during normal operation:
The Security System detected an authentication error for the server DNS/chngw01.chn.local. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
The ISA server is not part of a domain (there is no domain), however it is running DNS. Currently i see that the internal network card is using itself as the dns server (and only itself) whole the external card is using 2 ISP dns servers. Is this correct?.
i would like to resolve the lsa error, but since i see it occur about every 15 minutes it may not be my real issue.
There are no other errors that occur around the time that they lose internet access.
The isa server is essentially configured to allow only a set of business approved websites (http) otherwise everything is allowed through