SBS 2008 Removed trial Forefront Security and lost web access for server and clients


Hi all,

I have just removed the trial version of Forefront Security that is installed with SBS 2008 and now seem to have lost access (port 80 only)  to the internet from the server and clients.

- Everything has been working fine until...the removal of Forefront Security
- Server and clients (all Win7 Pro) can all nslookup, dns, ping hosts fine
- Server and clients can all browser (IE or Firefox) to https sites fine
- Server and clients fail attempting a normal website (http/port 80)
- You can telnet to port 80 on the website (ie. www.google.com.au) it connects but does return any data
- There is no firewall (except for the ADSL modem's inbuild firewall for inbound traffic - which has not been touched and is stil in the "out of box" config).
- The ADSL modem/router is set as the gateway

How can server settings prevent a client from accessing the web (port 80 only)?

Any help would be much appreciated!

Regards,
Troy.
EscapedApeAsked:
Who is Participating?
 
Ady FootConnect With a Mentor SharePoint ConsultantCommented:
Hi Troy,

I wonder if this has anything at all to do with your Server and isn't just a problem with your router.  Is there any way you could take the server out of the equation please?  On a workstation or a laptop manually set the IP address and DNS to use the default router DNS server and see if you can browse the web.  If so, we know to look deeper into what's going on with the server.

If it does work with the router, please look into the DNS Server within SBS 2008.  From the Administrative Tools option on the Start Menu please load 'DNS'.

Within the DNS Administration tool please expand your server and then right-click your server and select 'Properties'.  Then select the 'Forwarders' tab.  Within the list on that tab you should see your router IP address.  On my tab I see '192.168.1.254' and then the DNS address.  If your list is empty this could be the cause of the problem.  Click on 'Edit' and enter your router's IP address.  Come out of the properties sheet and right-click on your server name within the 'DNS' window.  Go to 'All Tasks' and then Restart.

See if that works.

Ady
0
 
Ady FootSharePoint ConsultantCommented:
I've done some digging on this most odd scenario and can see absolutely no reason why uninstalling ForeFront would cause this problem.  Please can you confirm that you restarted the server once you had completed the uninstallation?

Can the server and clients access the companyweb site and can you access your remote.yourdomain.com site from inside and outside the organisation?

Regards,

Ady
0
 
Mr_GrumpyCommented:
Could you check the proxy settings within the browsers?
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
Ady FootSharePoint ConsultantCommented:
Hi Mr_G - for my own benefit please could explain your comment?  SBS 2008 doesn't include a proxy of any kind and, for one to be configured across all workstations and the server, this would need to be configured in Group Policy and the author would be aware of that.  ForeFront Security for Exchange also doesn't do anything regarding proxies.

Just wondered why you suggested it in case I'm missing something?

Many thanks and kind regards,

Ady
0
 
EscapedApeAuthor Commented:

Hi Ady,

Yes, I've restarted the server twice since the removal of FS. The clients and server can all access the company web internally and externally.

Mr Grumpy, I've checked all internet setting from within the browsers and, as you'd expect, there are none.

It appears as if something is blocking external access to port 80.

How would it be possible for the SBS 2008 server to interferring with the clients accessing the web?

Surely the server is only providing DNS/DHCP services to the client (the gateway is my ADSL modem/router) computers?

It FEELS like a outbound firewall issue...but there aren't any in place, nor have there been any changes to the ADSL modem/router.

Troy.
0
 
EscapedApeAuthor Commented:

Hi Ady,

Well, it seems that I have been hit by a coincidence - The very moment (within 10 minutes) of uninstalling my FS my router began failing - oddly enough the first sympton being nothing but outbound requests via URL (direct IP requests okay) not working. Within 6 hours the ADSL modem router failed completely.

I had an old ADSL router...after reconfiguring and adding a switch and WAP I was able to get things up and running.

Troy.
0
 
Ady FootSharePoint ConsultantCommented:
Troy,

Yup - I suspected as such.  There was no way that ForeFront had anything to do with this...it was either router or DNS with DNS being the more likely culprit.

Glad you got it sorted.  Please don't forget to close this question properly now you have a solution.

Regards,

Ady
0
 
EscapedApeAuthor Commented:

Hi Ady,

No problem - what is the correct way to close a question like this (maybe this not the correct place to ask this) where the answer did not relate directly to the initial question (ie. ForeFront)?

Should I mark 28874893 as the accepot solution or should I mark multiple?

Troy.
0
 
Ady FootSharePoint ConsultantCommented:
Hi Troy,

I think you're right, http:#28874893 seems to be the right answer.  Ultimately the problem was resolved even though ForeFront wasn't the initial problem so an answer should still be accepted.  I don't think split points is right because the proxy idea, whilst helpful, didn't actually help towards the solution.

Regards,

Ady
0
 
EscapedApeAuthor Commented:

Ady's answer led me in the correct direction by ruling out the SBS 2008 and putting more thought into the problem being a network problem (faulty router).

Troy.
0
All Courses

From novice to tech pro — start learning today.