SBS 2008 Removed trial Forefront Security and lost web access for server and clients


Hi all,

I have just removed the trial version of Forefront Security that is installed with SBS 2008 and now seem to have lost access (port 80 only)  to the internet from the server and clients.

- Everything has been working fine until...the removal of Forefront Security
- Server and clients (all Win7 Pro) can all nslookup, dns, ping hosts fine
- Server and clients can all browser (IE or Firefox) to https sites fine
- Server and clients fail attempting a normal website (http/port 80)
- You can telnet to port 80 on the website (ie. www.google.com.au) it connects but does return any data
- There is no firewall (except for the ADSL modem's inbuild firewall for inbound traffic - which has not been touched and is stil in the "out of box" config).
- The ADSL modem/router is set as the gateway

How can server settings prevent a client from accessing the web (port 80 only)?

Any help would be much appreciated!

Regards,
Troy.
EscapedApeAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Ady FootSharePoint ConsultantCommented:
I've done some digging on this most odd scenario and can see absolutely no reason why uninstalling ForeFront would cause this problem.  Please can you confirm that you restarted the server once you had completed the uninstallation?

Can the server and clients access the companyweb site and can you access your remote.yourdomain.com site from inside and outside the organisation?

Regards,

Ady
0
Mr_GrumpyCommented:
Could you check the proxy settings within the browsers?
0
Ady FootSharePoint ConsultantCommented:
Hi Mr_G - for my own benefit please could explain your comment?  SBS 2008 doesn't include a proxy of any kind and, for one to be configured across all workstations and the server, this would need to be configured in Group Policy and the author would be aware of that.  ForeFront Security for Exchange also doesn't do anything regarding proxies.

Just wondered why you suggested it in case I'm missing something?

Many thanks and kind regards,

Ady
0
The Ultimate Tool Kit for Technolgy Solution Provi

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy for valuable how-to assets including sample agreements, checklists, flowcharts, and more!

EscapedApeAuthor Commented:

Hi Ady,

Yes, I've restarted the server twice since the removal of FS. The clients and server can all access the company web internally and externally.

Mr Grumpy, I've checked all internet setting from within the browsers and, as you'd expect, there are none.

It appears as if something is blocking external access to port 80.

How would it be possible for the SBS 2008 server to interferring with the clients accessing the web?

Surely the server is only providing DNS/DHCP services to the client (the gateway is my ADSL modem/router) computers?

It FEELS like a outbound firewall issue...but there aren't any in place, nor have there been any changes to the ADSL modem/router.

Troy.
0
Ady FootSharePoint ConsultantCommented:
Hi Troy,

I wonder if this has anything at all to do with your Server and isn't just a problem with your router.  Is there any way you could take the server out of the equation please?  On a workstation or a laptop manually set the IP address and DNS to use the default router DNS server and see if you can browse the web.  If so, we know to look deeper into what's going on with the server.

If it does work with the router, please look into the DNS Server within SBS 2008.  From the Administrative Tools option on the Start Menu please load 'DNS'.

Within the DNS Administration tool please expand your server and then right-click your server and select 'Properties'.  Then select the 'Forwarders' tab.  Within the list on that tab you should see your router IP address.  On my tab I see '192.168.1.254' and then the DNS address.  If your list is empty this could be the cause of the problem.  Click on 'Edit' and enter your router's IP address.  Come out of the properties sheet and right-click on your server name within the 'DNS' window.  Go to 'All Tasks' and then Restart.

See if that works.

Ady
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
EscapedApeAuthor Commented:

Hi Ady,

Well, it seems that I have been hit by a coincidence - The very moment (within 10 minutes) of uninstalling my FS my router began failing - oddly enough the first sympton being nothing but outbound requests via URL (direct IP requests okay) not working. Within 6 hours the ADSL modem router failed completely.

I had an old ADSL router...after reconfiguring and adding a switch and WAP I was able to get things up and running.

Troy.
0
Ady FootSharePoint ConsultantCommented:
Troy,

Yup - I suspected as such.  There was no way that ForeFront had anything to do with this...it was either router or DNS with DNS being the more likely culprit.

Glad you got it sorted.  Please don't forget to close this question properly now you have a solution.

Regards,

Ady
0
EscapedApeAuthor Commented:

Hi Ady,

No problem - what is the correct way to close a question like this (maybe this not the correct place to ask this) where the answer did not relate directly to the initial question (ie. ForeFront)?

Should I mark 28874893 as the accepot solution or should I mark multiple?

Troy.
0
Ady FootSharePoint ConsultantCommented:
Hi Troy,

I think you're right, http:#28874893 seems to be the right answer.  Ultimately the problem was resolved even though ForeFront wasn't the initial problem so an answer should still be accepted.  I don't think split points is right because the proxy idea, whilst helpful, didn't actually help towards the solution.

Regards,

Ady
0
EscapedApeAuthor Commented:

Ady's answer led me in the correct direction by ruling out the SBS 2008 and putting more thought into the problem being a network problem (faulty router).

Troy.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.