Solved

HTTPS connection through ISA Server 2000

Posted on 2008-09-30
1
435 Views
Last Modified: 2008-10-01
Windows Server 2003 with ISA Server 2000 hosting an internal web site.The external IP address is 209.92.xxx.x44 for the firewall which NATs both port 80 and port 443 traffic to the external NIC of the ISA Server 192.168.0.3.  Then, the traffic (at least for port 80) goes to the internal side/NIC where the web site is hosted on a server at 192.168.1.77.  All is well and works for port 80, however, port 443 does show when i run netstat (the connection is shown in the display), but you can't browse to it.

This gets kind of confusing, so I will try and illustrate this problem as best as I can.

On the LAN when I browse to the IP address of the ISA server 192.168.0.3 it works on port 80, but not port 443.  Yet, when I browse by http://localhost or httpS://localhost or http://192.168.1.77 or httpS://192.168.1.77 everything works as expected.

So, the SSL certificate is working through port 443 connections when you browse by the IP address of the server itself and localhost but the SSL certificate is NOT working with the IP address of the ISA Server 2000 192.168.0.3.  What is really troublesome is that I KNOW port 80 works with the IP address of the ISA Server 2000 192.168.0.3 and I can see the port 443 traffic when I do a netsat on the web site hosting server 192.168.1.77, so although it looks like I can blame the fault on the ISA Server, I really can't because it looks like the port 80 and port 443 traffic is being handled properly by the ISA Server.over to the web site hosting server on the inside 192.168.1.77...... just the SSL certificate can't display when you access the hosted site by the IP address of the ISA Server 192.168.0.3 (browser returns the generic "Page can't be displayed" error).

To avoid the questions, yes the web hosting side is setup as it should be with the certificate and web site properties setup to listen for port 80 and port 443 on all IP addresses.  That is obvious because the SSL certificate is displayed when you go to the IP of the web site hosting server itself 192.168.1.77
0
Comment
Question by:FlurbSnarf
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 

Accepted Solution

by:
FlurbSnarf earned 0 total points
ID: 22614366
Looks like adding a "Server Publishing Rule" in ISA and subsequent restart resolved the issue, but not 100% certain that is what fixed it.
0

Featured Post

What Is Transaction Monitoring and who needs it?

Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
This is a high-level webinar that covers the history of enterprise open source database use. It addresses both the advantages companies see in using open source database technologies, as well as the fears and reservations they might have. In this…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question