Solved

MS ISA 2006 blocking outbound https connections

Posted on 2009-03-28
4
875 Views
Last Modified: 2012-05-06
I have three ISA servers, all in workgroup mode for my three offices, two of my offices can browse to HTTPS sites with no problem, one however cannot, ISA is blocking outbound HTTPS traffic for some reason, i have compared all my rule sets between the three and can find no differences.

not sure where to go from here as this is really stumping me
0
Comment
Question by:HHRSS2008
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 1

Author Comment

by:HHRSS2008
ID: 24011506
my first rule in my list is to allow all HTTP and HTTPS traffic from internal to external btw.
0
 
LVL 14

Expert Comment

by:Raj-GT
ID: 24012725
What are you seeing on ISA Loggin tab?
0
 
LVL 1

Author Comment

by:HHRSS2008
ID: 24012764
well, as an example

log time        DEstination IP        Destination Port          Protocol        ACtion        Rule  client IP Source and DEstination

so, this is a line from my trace log

3/29/2009 10:00am  65.55.13.62     443  HTTPS  Initiated Connection Internet 192.168.50.198 Internal External

3/29/2009 10:00am  65.55.13.62     443  HTTPS  Closed Connection Internet 192.168.50.198 Internal External

3/29/2009 10:00am  65.55.13.62     443  HTTPS  Denied Connection Internet 192.168.50.198 Internal External

yet, my two other ISA servers are working just fine allowing access to HTTPS sites. and I cannot see anything different about their internet access rules,

my Internet rule mentioned in the log entry above is simple, allow all protocols from all networks including local host to all networks including local host, I did that to try to figure out why ISA is not passing HTTPS.

and it still wont pass HTTPS connections out to the internet.



0
 
LVL 1

Accepted Solution

by:
HHRSS2008 earned 0 total points
ID: 24012983
Ah, so I figured it out!


stupid Websense even when the filter addon is disabled it still blocks HTTPS!!! nothing else, just HTTPS.

a bug I wonder????
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ISA Server detected routes through the network adapter LAN that do not correlate with the network to which this network adapter belongs What does this mean and how can one go about correcting it? In simple terms, this error message indicates t…
Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question