Solved

Configuring Microsoft ISA 2006 Web Proxy to use port 80 instead of 8080

Posted on 2007-11-29
12
9,158 Views
Last Modified: 2011-08-18
I would to like to configure my MS ISA 2006 web proxy to port 80 instead of the default port of 8080. I have changed the port number to 80 in the Web proxy tab on my Internal Networks and clicked Apply.  If I then change the proxy address on IE on a client machine from port 8080 to 80, then IE doesn't work. Am I missing a step?
0
Comment
Question by:mandalj
  • 6
  • 6
12 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 20375329
Open the ISA gui
Select configuration - networks - internal - properties - select the web proxy tab
Change the port from the default 8080 to 80.

Save the policy
Amend your ie browsers proxy settings to use port 80

That should be it - no you are not missing a step
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 20375345
What happens after the change? What error?

Open the isa gui - select monitoring - logging - click start query. What meesages do you get in the log?
0
 

Author Comment

by:mandalj
ID: 20375647
The Monitoring shows that port 80 is being denied by the default policy
0
 

Author Comment

by:mandalj
ID: 20375665
There are no errors, the web page of the URL is not displayed
0
 

Author Comment

by:mandalj
ID: 20375932
If I change the web proxy to any other port setting say 85, then it works. Websense Enterprise is configured to monitor content on another machine. Is there a rule ordering issue?
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 20376340
1 of 2 things then.

First, ISA does not believe that port 80 traffic is allowed to pass from the internal & local host to external?
second, are you running IIS on the ISA server itself?

No, there is not a rule issue on this - if there was  then the other ports would not operate either that you set the proxy to. Also, the denied message would give a rule name in the list, it would not have dropped down to the default rule at the bottom.

Make sure you have .net 1.1 on the ISA box
Run up the ISA bpa
http://www.microsoft.com/downloads/details.aspx?FamilyId=D22EC2B9-4CD3-4BB6-91EC-0829E5F84063&displaylang=en


0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 

Author Comment

by:mandalj
ID: 20376687
Yes, I run IIS, do I need to change the default web site port, it is currently 80?

And I have run ISA Bpa - 1 critical error - The External network is used in single network card sceniro.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 20376711
That should be OK assuning you used the single nic network template wizard when you installed ISA.

It seems the issue you have is that ISA is already using port 80 (for the IIS service) therefore it cannot use this for the web proxy service also. In theory it should be OK but in practice i have seen it once or twice before causing problems.
Yes, I would put it back to 8080, the default.

Keith
0
 

Author Comment

by:mandalj
ID: 20376931
I amended the IIS Default Web site port to  85 and then changed the web proxy to 80 and it seems to work - is a viable solution?
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 250 total points
ID: 20377405
That would be fine - it is the same thing really as you have moved the service on the ISA server to another port, thereby freeing up port 80 but it begs the bquestion of why do you have IIS on the ISA server anyway? ISA does not need it.
0
 

Author Comment

by:mandalj
ID: 20378157
Thanks, I will raise the question with guy who installed it.  Many thanks for all your help.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 20378173
Welcome :)
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Microsoft's ISA Server has been its pre-eminent security product for about a decade and is still regarded amongst the well-informed as one of the best software firewalls and application gateways ever released, by any manufacturer. ISA Server has bee…
This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now