NOSIT
asked on
ISA on SBS stops external website access.
I recently installed ISA server on SBS 2003 R2 Prem, once I installed it none of the internal websites would work, RWW, OWA, etc, the client also had another custom website running on port 7999 which I could get to work but only after creating a rule for it, the same rule wouldnt publish the other sites. After 6 hours of stuffing around I was able to get http:\\company.com.au to work, but not https:\\company.com.au and if i clicked on any link from the http site it wouldnt work. I cant recall the error that I was getting and stupidly didnt write it down.
Any pointers? Tips? or anybody experience this previously.
And yes I did run the internet connection wizard.
Also all websites worked fine internally. I tried the same certificate, and also tried creating new certificates.
Any pointers? Tips? or anybody experience this previously.
And yes I did run the internet connection wizard.
Also all websites worked fine internally. I tried the same certificate, and also tried creating new certificates.
ASKER
I could connect using RDP, I could connect to non SSL website, but not SSL
I do have SP2 instaled however.
I do have SP2 instaled however.
You don't publish rules for internal servers - only external.
If you are on R2 SP2 of sbs2003 I would run that patch anyway.
Have you deployed the ISA firewall client to the workstations?
If you are on R2 SP2 of sbs2003 I would run that patch anyway.
Have you deployed the ISA firewall client to the workstations?
ASKER
ISA firewall client was deployed to 1 test workstation and it could access the internet, and obviously the internal website.
The problem still remains that the website couldnt be accessed through the WAN interface, not sure why thats relevant to the firewall client.??
The problem still remains that the website couldnt be accessed through the WAN interface, not sure why thats relevant to the firewall client.??
Wanted to make sure that the inside configuration was actually working OK. After you installed ISA and then reran the ceicw to configure the server etc did the normal web sites such as companyweb, owa, oma run OK? The ceicw would have configured the SSL certificate to match the proper settings (ie prior to manually configuring the additional application on port 7999, did the SBS operate as a standard instaall OK?)
ASKER
The normal websites ran ok from inside, but not outside.
The CEICW wizard runs as part of the ISA install, once it was complete i restored my SSL certificates and configured ISA to use the new certificate, I also re ran the CEICW wizard again and let it create a enw certificate that didnt work, and also did a repair install of ISA which ran CEICW again and again let it use a new cert which didnt work.
The CEICW wizard runs as part of the ISA install, once it was complete i restored my SSL certificates and configured ISA to use the new certificate, I also re ran the CEICW wizard again and let it create a enw certificate that didnt work, and also did a repair install of ISA which ran CEICW again and again let it use a new cert which didnt work.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Jeff,
That sounds pretty promising, I am due to go back up there next week and try again so I would greatly appreciate any more info if you get a chance.
That sounds pretty promising, I am due to go back up there next week and try again so I would greatly appreciate any more info if you get a chance.
ASKER
Ended up resolving this one by doing what you said and had to remove 2 create a few rules also, not sure which fixed it.
If so, have you seen this link?
http://support.microsoft.com/default.aspx/kb/936594
Are you using the isa fireall client?