Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 528
  • Last Modified:

Issue with HTTP/RPC after network disconnect failure

My setup is ISA SERVER 2006 >>> Exchange 2003. The isa server is also the dhcp server and the exchange server is also the internal, dns and active directory server.  I have no front end server.

The issue is that after a network disconnect with my ISP, the exchange server publshing rule (OWA and HTTP/RPC) will not work. Internet works fine and I can even access other published sites from the isa server. however, http/rpc connections from window mobile phones, external outlook clients and OWA access will not work until I restart the ISA Firewall service.
0
mcolommena
Asked:
mcolommena
  • 5
  • 4
1 Solution
 
AlanConsultantCommented:
Hi,

What happens from outside when you go to:

https://server.domain.com/exchange

Can you telnet to this:

telnet server.domain.com 443

Thanks,

Alan.
0
 
mcolommenaAuthor Commented:
I have not tried to telnet, but on the browser if i type https://server.domain.com/exchange, whih typically brings up my owa, i geta page cannot be displayed error.
0
 
AlanConsultantCommented:
Please can you try the telnet, and see what happens (I am guessing you'll get no response, but let's try anyway).

If that is the case, then it seems most likely either the perimiter firewall / router - what do you have on the perimeter?

Or, if not that, then either the ISA server itself or the exchange server.

Depending on your LAN layout, is there any machine or device that is outside the ISA server, but inside the perimeter?  If so, can you try telnet (or browser) from there?

Also, can you connect to OWA from inside the ISA server (I am guessing about your network config, but perhaps your own workstation is inside the ISA server and on the same subnet as the exchange server?)  If so, try connecting to OWA from your workstation:

https://server/exchange

where server is either the internal hostname or IP of the exchange server.

Thanks,

Alan.
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
mcolommenaAuthor Commented:
telnet does not work from the outside. however, it does work from the inside. Meaninig that from within the local lan the services are up on the exchange. They just do not work form the outside. This happens everytime that the isp phyiscal connection on the external wan card of the isa server gets reset. meaning that the netowrk card sees a disconnect and a reconnect. the isp rebooting thier router.
0
 
AlanConsultantCommented:
Is your ISA server's WAN-side NIC connected to an ADSL modem or a fibre termination or something?
If so, I wonder if there is some interaction there causing a problem?

Not sure how easy this will be for you (depends on whether you have a spare router lying around), but you could try putting an additional NAT router between the 'modem' (whatever is there) and the ISA server.

You'll need to setup the router to pass through outbound (might as well be everything initially at least since this is not a security measure), and make sure you port-forward whatever you need to come in (443, 25, etc etc)

That way, the ISA Server won't see a network disconnect (it will be the new router that sees the disconnect)

Nothing inside changes as the ISA Server is still the main firewall and DHCP.

Does that make any difference?

Alan.
0
 
mcolommenaAuthor Commented:
Alan...... Sorry I have not commented... I will try this and let you know.
0
 
AlanConsultantCommented:
No worries.  I guess you are still having the issues!

Post back when you can.

Alan.
0
 
mcolommenaAuthor Commented:
Yes, still the same issue.
0
 
AlanConsultantCommented:
Hi,

Do you mean you tried the additional router suggestion?

If so, your ISA server should not be seeing any disconnects now?

Alan.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now