ISA Sevrer 2000 connection timeout problem with specific web sites

Posted on 2008-10-06
Last Modified: 2013-11-16
Hello all,
I have a strange problem.
i am running ISA server 2000 on a windows server 2000 system and this system is the proxy server for all XP clients.

Recently i moved over 2 a new ISP. Since then (i think..i am not sure if it was after i shifted the ISP) the clients have started receiving an error while browsing some particular sites. All other sites are opening just fine. With these specific sites, i get an error  "10060 - Connection timeout, Internet Security and Acceleration Server |
Background:The gateway could not receive a timely response from the Web site you are trying to access. This might indicate that the network is congested, or that the Web site is experiencing technical difficulties."
I have seen people having the same problem on the forums. however my situation is a bit different
1. we can browse all web sites but only specific web sites throws this problem
2. i get the same error on both IE & Firefox
3. some web sites open but the display is like a bomb has gone off in the middle of the web page!!...all links are scattered, text is scattered and images are displayed like "X" in a box. Even this scattered dispaly takes a lot of time to load
4. i have restarted the server.
5. the server uses an internal DNS. i have flushed the cache of the DNS server and restarted the DNS services.
6. so i decided to blame the ISP. however those guys came with a laptop and connected the internet cable directly to a laptop (bypassing the ISA and internal DNS). and the web sites in question opened in fraction of a second. So the ISP is OKAY!!!
7. the ISA server hard disk showed lot of fragmentation, even defrag did not help. The ISA cache file has been allocated 10 GB of space.
8. i am also able to do an "nslookup" for the domain names in question from the clients
9. some of the web sites which dont open are

I have no idea whats going on!!
Any suggestions would be of great help

Question by:smanoj21
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3

Expert Comment

ID: 22649255
there must be a problem with :
most possible
1-your cache on isa server is not functioning well ( disable caching an try testing), if you do not hav any external cache server in front of isa server.
2-your dns server is not functioning well,config the dns server to forward request but  not resolving the names (public dns :, check the dns server connectvity to internet on every made resuest.(isa dasboard > logging  > monitoring)
3-you made a modify on http parameters of one your rules ( right click on internet allow rule > http config), reverse it and
4-you have a content fitering server / device/service (surfcontrol,cyblock,websense,...)installed on/in front of isa server that inspects and modifies the http resquest and is not functioning correctly ( find it in add-ins page on isa server management tool ,using the configuration > add-ins ) disable the add-in,restart the firewall service .
Good Luck
LVL 51

Accepted Solution

Keith Alabaster earned 500 total points
ID: 22650205
First of all - ISA2000 went out of support over two years ago even with SP2. You really should be on a supported product that has the necessary filters and support for the way Internet sites can now implement things - ISA2000 will struggle with a number of these.

Second, are you using ISA as a proxy only or integrated solution?
I assume you are on ISA2000 SP2?
If you make the request from ISA itself, does it display the same issues as seen from client pc's?
LVL 51

Expert Comment

by:Keith Alabaster
ID: 22874002
I think that is what I said
LVL 51

Expert Comment

by:Keith Alabaster
ID: 22911645
:)  thanks

Author Comment

ID: 23040566
Hi i am back!
Now i have installed a server from scrach with Windows server 2003 R2 Standard and ISA Server 2006 SP1. Still the same problem !!! i have the below information:

The clients receive the error:
Error Code 10060: Connection timeout
Background: The gateway could not receive a timely response from the website you are trying to access. This might indicate that the network is congested, or that the website is experiencing technical difficulties.

The ISA server logging throws the below info:
Failed Connection Attempt IDGURISA01 11/26/2008 2:42:41 PM
Log type: Web Proxy (Forward)
Status: 10060 A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond.  
Rule: Internal
Source: Internal (
Destination: Internal (
Request: GET 
Filter information: Req ID: 06707f4e; Compression: client=No, server=No, compress rate=0% decompress rate=0%
Protocol: http
User: COOLIDGUR\msukumaran
This is really really strange. Some sites are opening just fine but others just wont open due to the above info. I have no clue what to do next...have tried everything. Last thing i can think of is restarting the Domain controller (DNS server) !

Please help !!

Featured Post

Raise the IQ of Your IT Alerts

From IT major incidents to manufacturing line slowdowns, every business process generates insights that need to reach the people required to take action. You need a platform that integrates with your business tools to create fully enabled DevOps toolchains.

You need xMatters.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Some time ago I faced the need to use a uniform folder structure that spanned across numerous sites of an enterprise to be used as a common repository for the Software packages of the Configuration Manager 2007 infrastructure. Because the procedu…
Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question