ISA Server 2004 Connections

Hello, I'm using ISA Server 2004 with all the services pack. Until now the server is running ok, but now, there are a couple of users that need to access  a specific supplier website that runs some .js components. When that components try to access the internet I have 2 types of error in ISA Logging :
First i have this message " non-SYN packet was dropped because it was sent by a source that does not have an established connection with the ISA Server computer."
Second i have this one "10053 An established connection was aborted by the software in your host machine. "

After this messages the users get stuck in the website. They really need to work on this website and I don't know what I can do to solve this problem. I cannot disable webproxy like I already saw in some forum. I have a webfiltering tool that depends on Authentication specified on webproxy tab.

Wait for some reply, thanks in advance. Sorry about my english it's not my native language.
toxicrainAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

pwindellCommented:
You have to run the Clients with the Firewall Client Software installed.
Many Web Applications will not authenticate with the Web Proxy Service due to bad design of the Applications.  So the Firewall Service must be used for them instead.
The JRE (applet  found in the Windows Control Panel) has to be set to use a Direct Connection.  The JRE must "believe" that there is no proxy.  This causes the JRE to not try to authenticate (and hence fail),...which then allows the Firewall Client Software to cover the Authentication.
0
toxicrainAuthor Commented:
First of all thanks for the fast reply. You speak about "The JRE (applet  found in the Windows Control Panel)", I can't locate this Icon. Are you refering to what in specific? Thanks in advance pwindell.
0
pwindellCommented:
You said the Site used Java componenets,...Java Applets require the Java Runtime environment (JRE),...when the JRE is installed there is created a "Java" icon in Windows Control Panel.  The JRE needs to be configured as I said.  You actually said .js componenets, but  there is no such thing as .js components
There is a such things as Java Componenets which require the JRE,... and there is a such thing as ActiveX Controls which aren't part of this conversation,...but those are what components are.   Java and JavaScript are not the same thing.   JavaScript is nothing more than Client-Side Script and does the same thing as VBScript,...all they do is feed instructions to the browser and the browser (not a componenet) does the action.  Client-Side Script can also effect Java Applets (componenets) behavor, however the key to them still comes down to the JRE that it runs "inside of".  Client-Side Script can effect ActiveX Components but those are not in the context of this conversation.
0
Big Business Goals? Which KPIs Will Help You

The most successful MSPs rely on metrics – known as key performance indicators (KPIs) – for making informed decisions that help their businesses thrive, rather than just survive. This eBook provides an overview of the most important KPIs used by top MSPs.

toxicrainAuthor Commented:
Hello pwindell. I already saw the component in control panel that you refer in one of your last post and it works. Now I can change Java Network options. But now I have another problem. I was making some test and I saw that every profile has is own options. This is a problem because the specific user that is trying to access the site doesn't have permitions to access control panel. There is any way to change this options in some registry key or some configuration file located in some folder?
0
pwindellCommented:
That is a really irritating over-sight on the part of Sun that created the JRE.  I know of know way around that other than temporarily giving the user access to Control Panel.  You'll have to complain to Sun about the fact that they don't give you a way to globally adjust the JRE,...but I doubt they are known for listening to anyone.
If you find a way (from Sun?), or if anyone else knows a way,..I would be interested in hearing it
0
pwindellCommented:
I did thing of a couple things....
Now the JRE may have an icon down by the Clock that opens the JRE Panel.
You also can go into the "bin" program folder of the JRE (ex.  C:\Program Files\Java\jre1.6.0_01\bin) and run the "javacpl.exe" file and get the same config dialog.  So if the user can get to they they would be alright.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
toxicrainAuthor Commented:
Thanks a lot pwindell, your solution works ;). Thanks for all your help.
0
toxicrainAuthor Commented:
The solutions presented by this user solved the problem.
0
pwindellCommented:
Very good sir!
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.