Solved

error when logging to ssl port other than 443

Posted on 2008-10-09
9
998 Views
Last Modified: 2012-05-05
Hi, I have a problem for a client that has to connect to a secure website on a port 8443.
I ran isa_tpr.js as I read in other request and configured the two port requested, 8443 e 9000. when I try to connect to the website from the server it works fine, but if i try to connect from the client it doesn't work. so the error is a rule that miss and I don't know what for a kind of rule I have to do. the client can go in internet on normal web page. it has a proxy configured that is the sbs 2003 with isa 2004
0
Comment
Question by:Riccardo71
  • 4
  • 4
9 Comments
 
LVL 6

Expert Comment

by:Hardeep_Saluja
ID: 22683462
Hi Riccardo,

Whatis the exact error?
0
 

Author Comment

by:Riccardo71
ID: 22684673
The error is always the same
error code 502 proxy error. the specyfied secure socket layer (ssl) port is not allowed. isa server is not configured to allow ssl request from this port. most web browser use port 443 for ssl request.(12204)
but when I try from the server it opens the web site correctly
0
 

Accepted Solution

by:
Intrepidfox25 earned 400 total points
ID: 22738987
Hi you need to add this port to ISA's range see http://support.microsoft.com/kb/283284 copy the VB script syntax and where is has the 'AddRange("SSL 9443", 9443, 9443)' you just replace the 9443 entries with 8443,

Hope this helps
0
 

Author Comment

by:Riccardo71
ID: 22794019
Hi, I've read the article that it explains only of the server configuration but nothing is said about specifical configuration for the client. I've done it and the server can navigate in the ssl page.but the client is blocked. the client can navigate in http pages but when I try the ssl page with port 8443. I'm blocked with the usual message. I've tried in a test virtual environment. I will try by the customer and perhaps It will function. bye
0
Free camera licenses with purchase of My Cloud NAS

Milestone Arcus software is compatible with thousands of industry-leading cameras for added flexibility. Upon installation on your My Cloud NAS, you will receive two (2) camera licenses already enabled in the software. And for a limited time, get additional camera licenses FREE.

 

Expert Comment

by:Intrepidfox25
ID: 22794133
Hi I would expect the server to be able to navigate as it wont be going throught the web proxy service it would have a direct connection out to the internet? Give it a go let us know how you get on.
0
 

Author Comment

by:Riccardo71
ID: 22794398
I think You have understood the problem. infact the server has non proxy, instead the client has the proxy configuration and so has to be. so, what type of rule have I to do to let navigate the client?
thanks in advance
0
 

Expert Comment

by:Intrepidfox25
ID: 22794588
It is not a rule that is blocking this as such as the client can connect to http and i assume standard https sites, the problem is ISA will only connect to https sites on standard 443 so if you have a non standard SSL port like 8443 you need to add it to ISA's range of ports which you do by running the script in the KB article above.
0
 

Expert Comment

by:Intrepidfox25
ID: 22794822
Just to confirm you must run this on the ISA server itself not the client machine.
0
 

Author Comment

by:Riccardo71
ID: 22797155
ok. The first time I've tried, I used a script called isa_tpr.js, which I found mentioned in this website. It has functioned only for the server, I don't know why. Perhaps My test environment had some problems. Know I've tried with the method of the article 283284 and it runs fine. I will try to the customer and I will come back to confirm. hi
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SBS2008  and SQL 10 74
Exchange 2010 - how to send from accepted domain 52 55
Restore a single mailbox Exchange 2007 3 36
Can't Decide: Office 365 Premium or Status Quo 7 92
Forefront Threat Management Gateway 2010 or FTMG comes with some very neat troubleshooting tools built-in when trying to identify what is actually happening behind the scenes within the product when traffic is passing through its interfaces. To the …
I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now