error when logging to ssl port other than 443

Posted on 2008-10-09
Last Modified: 2012-05-05
Hi, I have a problem for a client that has to connect to a secure website on a port 8443.
I ran isa_tpr.js as I read in other request and configured the two port requested, 8443 e 9000. when I try to connect to the website from the server it works fine, but if i try to connect from the client it doesn't work. so the error is a rule that miss and I don't know what for a kind of rule I have to do. the client can go in internet on normal web page. it has a proxy configured that is the sbs 2003 with isa 2004
Question by:Riccardo71
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4

Expert Comment

ID: 22683462
Hi Riccardo,

Whatis the exact error?

Author Comment

ID: 22684673
The error is always the same
error code 502 proxy error. the specyfied secure socket layer (ssl) port is not allowed. isa server is not configured to allow ssl request from this port. most web browser use port 443 for ssl request.(12204)
but when I try from the server it opens the web site correctly

Accepted Solution

Intrepidfox25 earned 400 total points
ID: 22738987
Hi you need to add this port to ISA's range see copy the VB script syntax and where is has the 'AddRange("SSL 9443", 9443, 9443)' you just replace the 9443 entries with 8443,

Hope this helps
Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users


Author Comment

ID: 22794019
Hi, I've read the article that it explains only of the server configuration but nothing is said about specifical configuration for the client. I've done it and the server can navigate in the ssl page.but the client is blocked. the client can navigate in http pages but when I try the ssl page with port 8443. I'm blocked with the usual message. I've tried in a test virtual environment. I will try by the customer and perhaps It will function. bye

Expert Comment

ID: 22794133
Hi I would expect the server to be able to navigate as it wont be going throught the web proxy service it would have a direct connection out to the internet? Give it a go let us know how you get on.

Author Comment

ID: 22794398
I think You have understood the problem. infact the server has non proxy, instead the client has the proxy configuration and so has to be. so, what type of rule have I to do to let navigate the client?
thanks in advance

Expert Comment

ID: 22794588
It is not a rule that is blocking this as such as the client can connect to http and i assume standard https sites, the problem is ISA will only connect to https sites on standard 443 so if you have a non standard SSL port like 8443 you need to add it to ISA's range of ports which you do by running the script in the KB article above.

Expert Comment

ID: 22794822
Just to confirm you must run this on the ISA server itself not the client machine.

Author Comment

ID: 22797155
ok. The first time I've tried, I used a script called isa_tpr.js, which I found mentioned in this website. It has functioned only for the server, I don't know why. Perhaps My test environment had some problems. Know I've tried with the method of the article 283284 and it runs fine. I will try to the customer and I will come back to confirm. hi

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
The SBS 2011 release date (RTM) is supposed to be around Christmas, 2011.  This article is a compilation of my notes -- things I have learned first hand.  The items are in a rather random order, but I think this list covers most of what is new and d…
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question