<div>
Are you surprised?<br />
<br />
Define what you mean by changed the A record - the IP address of the record or the FQDN?<br />
If it is the name, have you got new certificates? Are these imported into ISA and associated with the web publishing rule listener?<br />
Has the updated certificates been pushed to the respective Blackberry hand-helds?<br />
Have you re-run the publishing wizard to rebuild the rule?
</div>


<div>
<br />
I have changed the IP address of the record, not the host name. I have not re-run the publishing rule. I'm using the same certificate as before. Do I need to re-run the web publishing rule?
</div>


<div>
<div class="content wysiwyg-content">
I have recently changed the A record for the public facing OWA address. Since then the ISA server is denying any further blackberry connection attempts. All was fine before the A record was changed. I can see the default last rule denying the HTTPS requests in the logging. Not sure why though.<br />
<br />
ISA 2004 SP3<br />
Exchange 2003 <br />
<br />
Thanks<br />

</div>
</div>


I have recently changed the A record for the public facing OWA address. Since then the ISA server is denying any further blackberry connection attempts. All was fine before the A record was changed. I can see the default last rule denying the HTTPS requests in the logging. Not sure why though.

ISA 2004 SP3
Exchange 2003 

Thanks


ISA 2004 Stopping Blackberry OWA access with default last rule

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

Microsoft Forefront, formerly known as Internet Security and Acceleration Server (ISA Server), is a network router, firewall, antivirus program, VPN server and web cache that runs on Windows servers. It includes identity management and protection systems, and discontinued systems for threat management and network protection, along with protection for Sharepoint and Exchange. The scope of discussions includes forward and reverse proxy, application and service publishing, virtual private networks (VPNs), outbound access rules, SSL certificates and network routing within either a single node or an highly-available array pairing.