ISA Connection Refused

I am receiving 10061: Connection refused when accessing a website published through ISA 2006 from the outside world. I'm not sure what the problem is; the website is accessible when RDPed into the ISA gateway.
I double checked that the port assignments are right.

Here are the details on the rule:
Allow HTTP, HTTPS from MyListener to www.mysite.com with access from all users all the time
MyRule Properties
From External
To www.mysite.com
Applies to HTTP, HTTPS
Rule applies to www.mysite.com
Web server: Redirect requests to HTTP port 80 and redirect requests to SSL port 443

Web listener properties:
Action: allow
From: External
To: www.mysite.com
Requests appear from original client
Connections: Enable HTTP 80, SSL 443 Do not redirect from HTTP to HTTPS
Certificates: Use single certificate www.mysite.com
Authentication: none

LVL 1
timbrighamAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

pwindellCommented:
10061?   What does the rest of the error say?

Turn off "Friendly Error Messages" in IE if that is what it takes to get the entire description.
0
Raj-GTSystems EngineerCommented:
1. Make sure your ISA Server is up-to-date by applying any missing Security Updates (http://technet.microsoft.com/en-us/forefront/edgesecurity/bb734854.aspx)

2. Check the host header values. (Is the web server configured to answer to www.mysite.com as the host header value?

3. Are you using the correct DNS settings on both ISA interfaces? You should only be using internal DNS servers for resolution on both interfaces.

4. Please describe what you have in the following tabs of the rule (From, To, Traffic, Listener, Public Name, Paths, Auth. Delegation, App. settings and Bridging)
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
timbrighamAuthor Commented:
pwindell:
This is a TS connection; the initial page loads correctly, and the error occurs when I attempt to enter the user and password in the RDP screen. When I look back at my initial post I didn't make that clear; my apologies. Changing settings in IE hasn't given any further error messages. What I'm posting comes from the ISA logs.

Raj-GT:
I checked everything you recommended - the problem turned out to reside in the Authentication Delegation screen. Once I turned on authentication to the end server everything is in the clear for the firewall.
0
pwindellCommented:
Do you mean it works now or does not?

With some Termianal Service sitautions with ISA you have to publish both the "web site" and RDP using separate Publishing Rules. They are two distinct processes.  In these cases the Web site does nothing more than provided an ActiveX version of the RDP Client to the user via the browser,...but once the ActiveX Control loads and activates it operates just as a regular RDP Client App and conects with just normal pure RDP,...so it use the RPD Publishing Rule.

I forget the exact situation where this is the case.  there is one thing called the Termianl Services Gateway and then their iw the Remote Web Workplace is SBS and I don't think they work the same way. There may even be other variations of this beyond these two.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.