Solved

ISA 2004 Stopping Blackberry OWA access with default last rule

Posted on 2010-09-09
4
531 Views
Last Modified: 2013-11-16
I have recently changed the A record for the public facing OWA address. Since then the ISA server is denying any further blackberry connection attempts. All was fine before the A record was changed. I can see the default last rule denying the HTTPS requests in the logging. Not sure why though.

ISA 2004 SP3
Exchange 2003

Thanks
0
Comment
Question by:joncrt
  • 3
4 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 33640559
Are you surprised?

Define what you mean by changed the A record - the IP address of the record or the FQDN?
If it is the name, have you got new certificates? Are these imported into ISA and associated with the web publishing rule listener?
Has the updated certificates been pushed to the respective Blackberry hand-helds?
Have you re-run the publishing wizard to rebuild the rule?
0
 

Author Comment

by:joncrt
ID: 33644372

I have changed the IP address of the record, not the host name. I have not re-run the publishing rule. I'm using the same certificate as before. Do I need to re-run the web publishing rule?
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
ID: 33648695
Should be OK - unless you had more than one ip address on the external interface.

For example, I have 5 external IP addresses on my external FTMG server (FTMG being the latest version of ISA). When I publish my internal services to the outside you need to create a listener. By default, ISA/FTMG will use ALL the external ip addresses OR you can select the ip address to use from that list. Not sure if this applies to you or not but if it does - and you have changed the IP address that is associated with the service then the service listener will require amending.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 33663548
Thank you :)
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

ISA Server detected routes through the network adapter LAN that do not correlate with the network to which this network adapter belongs What does this mean and how can one go about correcting it? In simple terms, this error message indicates t…
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now