Solved

Exchange 2003 OWA - Bad Request (Invalid Hostname)

Posted on 2010-08-29
11
2,069 Views
Last Modified: 2012-06-27
Okay, This has tormented me long enough and I still don't know why it happened.

We have a 2 server network.
Server 1: Windows 2003 Domain Controller, ISA 2006 std, IP: 192.168.1.100, 172.22.6.1
Server 2: Exchange 2003, IP: 172.22.6.2

The way network setup: INTERNET <----->  ISA/DC <-------> INTERNAL NETWORK SWITCH
I published Exchange OWA to public port 80 fine, public name "mail.mydomain.com". The Listener: listens on port 80, FBA with AD authentication

In internal DNS, I set mail.mydomain.com to point to the 192.168.1.100 so that it also displayed the Form based authentication page of Exchange.

Everything works fine, and after yesterday It started reporting problem from firefox "Invalid request (Bad Hostname)" or from IE "HTTP 400 Bad Request".

By logging the request, I can see that the http request never actually got to Exchange Server, it only request to the ISA/DC and stopped there. Details below
Log type: Web Proxy (Forward)
Status: 400 Bad Request
Rule: Allow all
Source: External (111.111.111.111)
Destination: Local Host (192.168.1.100:80)
Request: GET http://192.168.1.100/exchange 
Filter information: Req ID: 11f489f0; Compression: client=No, server=No, compress rate=0% decompress rate=0%
Protocol: http
User: anonymous

From within the company, I can actually type http://Server2/exchange and access webmail there, but this cannot be published to the internet.

Why is that ? Please assist me
0
Comment
Question by:Johnny_Nguyen
  • 5
  • 3
  • 2
  • +1
11 Comments
 
LVL 14

Expert Comment

by:Shabarinath Ramadasan
ID: 33555775
Seems an issue with ISA.
Which version of ISA you are using?

Are you able to browse mail.mydomain.com from your desktop ?
Are you able to browse this website from ISA using mail.mydomain.com?
Also, would suggest you to view the real time logging to understand if ISA is rejecting the requests due to some issues.

Thanks
Shaba
0
 
LVL 1

Author Comment

by:Johnny_Nguyen
ID: 33555789
I'm using ISA 2006 Standard SP1. And this isn't the first time it happened. The time logged on the ISA is real time.

From inside the network (from ISA and from other internal PCs), mail.mydomain.com cannot be browsed today, same error whereas previous I could do this (and see the form based authentication page from anywhere). Now I have to use http://server2/exchange to check webmail and it only valid for internal users.

What can be done in this case ?
0
 
LVL 1

Author Comment

by:Johnny_Nguyen
ID: 33555878
If I change the listener to listening to port 81, and browse it http://mail.mydomain.com:81/exchange from inside or outside the network, this allows me to view the FBA login page of outlook. But as soon as I logged in, every frame shows up as bad request (Invalid hostname) again. Just like they can't work on port 80 or something.
0
Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

 
LVL 34

Expert Comment

by:Shreedhar Ette
ID: 33556034
Hi,

- Right Click the Exchange Virtual directory in the IIS.
- Click on properties.
- Go To Directoy Security> IP Address restrction> If any IP Address add remove them

Restart the IIS and then try to access the OWA.

Hope this helps,
Shree
0
 
LVL 9

Expert Comment

by:v_9mhdrf
ID: 33556087
Please check whether you have set any Host Header value in Default web site.
> Right click on default Web site go to properties.
> Click on Advanced button near IP address and check whether you have set any Host Header Value in port 80.
> If yes please remove the Host Header Value from it and check for OWA again.

check out and revert back
Thanks,
Mohammed
0
 
LVL 1

Author Comment

by:Johnny_Nguyen
ID: 33556102
Tried both without avail. Even then the Exchange Server is down, I should at least get to see the FBA authentication page via ISA, in this case absolutely NO.
0
 
LVL 34

Expert Comment

by:Shreedhar Ette
ID: 33556186
Are you able to access the OWA locally?
0
 
LVL 9

Expert Comment

by:v_9mhdrf
ID: 33556191
Alright please follow the kb- http://support.microsoft.com/kb/883380
Delete and recreate the Exchange related Virtual Directories and try internally first.
0
 
LVL 1

Author Comment

by:Johnny_Nguyen
ID: 33556199
If locally I type http://server2/exchange I can access email on it without problem.
But as soon as I used the published name http://mail.mydomain.com.vn/exchange then I got the error regardless locally or remotely.
0
 
LVL 9

Expert Comment

by:v_9mhdrf
ID: 33556531
Check whether you have any URL Scan software installed, and set the AntiVirus Exclusions.
Check for SSL should be disabled in Default website under Directory Security Settings.
0
 
LVL 1

Accepted Solution

by:
Johnny_Nguyen earned 0 total points
ID: 33687521
This is completely a ISA issue, and it only happened to port 80.
I removed the latest updates including SP1, then reinstalled them all, working fine.

This happened again in a week, I finally gave up and moved it to port 443 and it has been working well since
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question