Solved

Cannot Connect to ISA Server

Posted on 2008-09-29
4
803 Views
Last Modified: 2008-11-23
I have an ISA Server 2006 installed on Windows Server 2003. I only want one computer to use the ISA Server for internet access. When i configure this server with a network address range none of the computers can ping it. Even when i create a firewall policy and allow pretty much everything through including ping the other computers still can't ping it.
The ISA Server can get on the internet and i can log on to it remotely. But the internal computers can't use it as a proxy.
Not sure where i am going wrong.
0
Comment
Question by:nealerocks
  • 2
4 Comments
 
LVL 7

Expert Comment

by:vikasjus
ID: 22595881
If you have done installation of ISA from remote controle then it will allow remote system IP address to perform admin task like ping and remote ctrl. as it adds that system into remote admin rule.

By default ping traffic is not allowed from any machine to ISA server.
By default ISA proxy uses port 8080. check proxy settings on client pc with this port.
rest everything is game of rules, check that is configured properly. Network is define properly as internal and external. Keep eye on Monitoring which will tell you what is going wrong on your ISA.
0
 
LVL 12

Author Comment

by:nealerocks
ID: 22600777
The installation was done locally. I have created a firewall rule that allows ping smtp http https dns etc.
I have changed the proxy to use port 8081 and the client is also using that port.
The ISA server only has 1 NIC. Dont really want to use it as a firewall. Just want it to be a proxy so i can block some websites.
0
 
LVL 2

Expert Comment

by:shhashemi
ID: 22649116
hi,
since ISA Server is a state full firewall, it is important to have one rule set that allows the internal rangae see the isa server correctly.
topest rule ( internal>local) and the scound top rule (local>internal).
to solve the problem temproraly  , config both rules to allow full portocol access from both sides to each other.
then you can customise the rules to allow only the specific protocols you need .
you can use logging>monitoring tab to check which rul is denying the client access to tcp port 8080 on isa server.
make sure the http porxy is enabled correctly on isa server.
Good Luck
0
 
LVL 12

Accepted Solution

by:
nealerocks earned 0 total points
ID: 22989608
I have reconfigured ISA with the single network adapter template. It now does what we want it to.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
ISA Server 2006 Replacement 33 3,064
Forward source port in forefront TMG 2010? 7 2,243
VPN setup through TMG 1 409
How to Setup & Deploy Proxy Settings on an iOS Device 4 849
There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question