Outlook times out connecting to server through CISCO PIX firewall

I got a problem with Outlook getting stuck/disconnections when connected to
MS Exchange (intermittant).  There's a Cisco PIX 535 firewall (software version 7.22) in between the users and exchange & domain controllers.
I noticed that I could sometimes replicate the problem when clicking on address book or new mail
and clicking on "TO". I found that outlook is connecting to DC(global catalog) to retrieve
address book entries at the time of the problems. Clicking on reconnect (on outlook icon)
or closing and opening outlook solves the problem. All other client applications work with
no problems so the problem only exists with MS Outlook.  I managed to capture the problem using Ethereal - I noticed that when the issue occurs there are 'DCERPC TCP RETRANSMISSIONS'.  DCERPC inspection is NOT enabled on the PIX firewall.

Any advice would be greatly appreciated.


15moorgateAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

lrmooreCommented:
Are you using https exchange proxy in outlook?
0
15moorgateAuthor Commented:
No, we are not using https.   We tried https and found that outlook still intermittantly freezes but you don't get the outlook ballon with the explanation symbol.
0
lrmooreCommented:
Which ports are you forwarding on the PIX?
Here's a good document on enabling RPC over HTTPS on Exchange 2003
filedb.experts-exchange.com/incoming/2008/03_w10/9820/Implementing-RPC-over-HTTPS.pdf
Then all you have to port-forward on the PIX is https/443

And a Microsoft troubleshooting guide
http://technet.microsoft.com/en-us/library/bb124649(EXCHG.65).aspx
0
Become an IT Security Management Expert

In today’s fast-paced, digitally transformed world of business, the need to protect network data and ensure cloud privacy has never been greater. With a B.S. in Network Operations and Security, you can get the credentials it takes to become an IT security management expert.

15moorgateAuthor Commented:
Sorry for delay on this question. The issue is still ongoing and we have done additional testing with users. If we replace FW between users with SW, the problem does not materialise.

Will provide further feedback soon.
0
15moorgateAuthor Commented:
Thank you for the feedback.
I have since realised that the problem is definetely caused by the PIX firewall.  I opened a Cisco TAC case and after running some DCERPC debug and capture traces, Cisco confirmed that PIX was dropping non-epm uuid bind connections.  I still have the TAC case open with Cisco and the case has been escalated to their developers.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
lrmooreCommented:
Thanks for the update. Please post back if they ever get a solution.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cisco

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.