Solved

Problem configuring ISA for Blackberry Enterprise Server connection

Posted on 2008-06-13
8
1,450 Views
Last Modified: 2012-06-27
Hi everyone,

I've been looking at a solution for a couple of days now and i'm not able to find an answer, so i hope you guys can help me.

My Blackberry server is in my internal network behind the ISA server 2004.

I created an access rule :
Allow Port 3101 from my BES server to *.blackberry.net (srp address) for all users.

I saw a couple of discussions saying that it only needs that to work.  However, it doesnt.

I received the following error :
Denied Connection - A non-SYN packet was dropped because it was sent by a source that does not have an established connection with the ISA Server computer.

So, my Bes server is able to send the 1st request to the srp.na.blackberry.net but not the second or third...

Initiated Connection at 23:05:18
Log type : Firewall service
Status : The operation completed successfully
Rule : Allow Blackberry
Source : Internal (x.x.x.x:2300)
Destination : External (srp.na.blackberry.com 204.187.87.33:3101)
Protocol : Blackberry

Denied Connection at 23:05:26
Log type : Firewall service
Status : A non-SYN packet was dropped because it was sent by a source that does not have an established connection with the ISA Server computer.
Rule : -
Source : Internal (x.x.x.x:4982)
Destination : External (srp.na.blackberry.com 204.187.87.33:3101)
Protocol : Blackberry

I know it's not an issue on my blackberry server because it works if it's not behind the ISA.

Thank you to help me with this huge problem!
0
Comment
Question by:Vision_Globale
  • 5
  • 3
8 Comments
 
LVL 6

Expert Comment

by:Nyah247
ID: 21782042
I have the following firewall rule:

Allow > Blackberry In (3101 TCP Inbound)/Blackberry Out (3101 TCP Outbound) > BES IP/External to BES IP/External > All users.

It works for me.
0
 
LVL 6

Expert Comment

by:Nyah247
ID: 21782077
Worst comes to absolute worst you can run the firewall client on the BES Server but that is not recommended.  The firewall client should stay off the servers.  So...with that in mine, I would only try that if you are under serious fire to get it working and need a little time to troubleshoot.
0
 

Author Comment

by:Vision_Globale
ID: 21802924
Ok, i'll try that.

For the firewall client, i already tried that, but no success so i uninstall it.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 

Author Comment

by:Vision_Globale
ID: 21848951
I made the following rule :

Allow > Blackberry IN (3101 Inbound)/Blackberry OUT (3101 Outbound) > Anywhere to Anywhere > All users.

It still doesnt work...
0
 
LVL 6

Expert Comment

by:Nyah247
ID: 21902929
Anything in the monitor when you try to make a connection?  Are they still the same as before?  
0
 

Author Comment

by:Vision_Globale
ID: 21916960
Still the same...

A non-SYN packet was dropped because it was sent by a source that does not have an established connection with the ISA Server computer.
0
 

Author Comment

by:Vision_Globale
ID: 22259167
I upgraded our BES server to 4.1.6 in case that was the cause of the problem... but still the same.
0
 

Accepted Solution

by:
Vision_Globale earned 0 total points
ID: 22450622
Weird problem... but solved!
It was the default protocol FTP that was changed and probably port configured were probably in conflict with the port 3101.  I remove the change made to the default protocol FTP and create another and now it works...
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Server Login Issue 4 55
WSUS Feature Updates for WIndows 10 6 102
Trust relationship SBS2011 - > Windows 2003 3 42
Shadow copies windows server 2003 2 86
The new PlayBook may not be the hottest selling tablet out there and may not be breaking much in the way of new ground but, for the committed BlackBerry users, it allows them to keep pace with a fast-moving industry. Much of the interface is familia…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now