Solved

Issue with HTTP/RPC after network disconnect failure

Posted on 2009-04-02
9
456 Views
Last Modified: 2012-05-06
My setup is ISA SERVER 2006 >>> Exchange 2003. The isa server is also the dhcp server and the exchange server is also the internal, dns and active directory server.  I have no front end server.

The issue is that after a network disconnect with my ISP, the exchange server publshing rule (OWA and HTTP/RPC) will not work. Internet works fine and I can even access other published sites from the isa server. however, http/rpc connections from window mobile phones, external outlook clients and OWA access will not work until I restart the ISA Firewall service.
0
Comment
Question by:mcolommena
  • 5
  • 4
9 Comments
 
LVL 12

Expert Comment

by:Alan3285
ID: 24056261
Hi,

What happens from outside when you go to:

https://server.domain.com/exchange

Can you telnet to this:

telnet server.domain.com 443

Thanks,

Alan.
0
 

Author Comment

by:mcolommena
ID: 24058163
I have not tried to telnet, but on the browser if i type https://server.domain.com/exchange, whih typically brings up my owa, i geta page cannot be displayed error.
0
 
LVL 12

Expert Comment

by:Alan3285
ID: 24065726
Please can you try the telnet, and see what happens (I am guessing you'll get no response, but let's try anyway).

If that is the case, then it seems most likely either the perimiter firewall / router - what do you have on the perimeter?

Or, if not that, then either the ISA server itself or the exchange server.

Depending on your LAN layout, is there any machine or device that is outside the ISA server, but inside the perimeter?  If so, can you try telnet (or browser) from there?

Also, can you connect to OWA from inside the ISA server (I am guessing about your network config, but perhaps your own workstation is inside the ISA server and on the same subnet as the exchange server?)  If so, try connecting to OWA from your workstation:

https://server/exchange

where server is either the internal hostname or IP of the exchange server.

Thanks,

Alan.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:mcolommena
ID: 24066790
telnet does not work from the outside. however, it does work from the inside. Meaninig that from within the local lan the services are up on the exchange. They just do not work form the outside. This happens everytime that the isp phyiscal connection on the external wan card of the isa server gets reset. meaning that the netowrk card sees a disconnect and a reconnect. the isp rebooting thier router.
0
 
LVL 12

Expert Comment

by:Alan3285
ID: 24070060
Is your ISA server's WAN-side NIC connected to an ADSL modem or a fibre termination or something?
If so, I wonder if there is some interaction there causing a problem?

Not sure how easy this will be for you (depends on whether you have a spare router lying around), but you could try putting an additional NAT router between the 'modem' (whatever is there) and the ISA server.

You'll need to setup the router to pass through outbound (might as well be everything initially at least since this is not a security measure), and make sure you port-forward whatever you need to come in (443, 25, etc etc)

That way, the ISA Server won't see a network disconnect (it will be the new router that sees the disconnect)

Nothing inside changes as the ISA Server is still the main firewall and DHCP.

Does that make any difference?

Alan.
0
 

Author Comment

by:mcolommena
ID: 24692579
Alan...... Sorry I have not commented... I will try this and let you know.
0
 
LVL 12

Expert Comment

by:Alan3285
ID: 24695808
No worries.  I guess you are still having the issues!

Post back when you can.

Alan.
0
 

Author Comment

by:mcolommena
ID: 25123982
Yes, still the same issue.
0
 
LVL 12

Accepted Solution

by:
Alan3285 earned 500 total points
ID: 25131012
Hi,

Do you mean you tried the additional router suggestion?

If so, your ISA server should not be seeing any disconnects now?

Alan.
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
ISA Server detected routes through the network adapter LAN that do not correlate with the network to which this network adapter belongs What does this mean and how can one go about correcting it? In simple terms, this error message indicates t…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question