Solved

ISA Firewall Lockout, Ceases internet traffic

Posted on 2011-02-10
3
792 Views
Last Modified: 2012-05-11
Hi Experts,

I have an intermitant issue with our firewall that ceases internet traffic. I can RDP into my firewall but cant find anything in the logs.

when I check my External NIC it is not sending or recieving any packets. if I try to disable/enable the nic that doesnt work either.

then I try to restart my ISA services through services mmc but it gets stuck at the windows firewall and takes about 20 mins to stop that service but still after that I cannot enable my nic back. this is the time I need to restart my server and then everything starts running, internet is back.

I understand it wont be an easy fix and some monitoring needs to be done but I need ideas on how to approach this.

it only happens once in 2 weeks to 4 weeks.
0
Comment
Question by:Key2IT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 300 total points
ID: 34868415
The fact that it is intermittent suggests that it is an underlying OS/hardware issue on the the ISA Server machine rather than an ISA Server application issue. The only time ISA will actually stop traffic completely is if something has triggered an alert regarding TCP connections and you would have seen this in the alerts section if this had been the case.

Is the ISA Server host fully patched up and ISA 2006 SP1 deployed?
Is the host hardware fully updated - bios/firmware/drivers?

What is on the outside of ISA? Router? Another firewall? Anything alerting on that box? Are all conecctions forced to use the correct speed/connection type or are things left to the autonegotiate state?
0
 
LVL 12

Assisted Solution

by:Amit Bhatnagar
Amit Bhatnagar earned 200 total points
ID: 34885279
I would agree with Keith. I worked on a similar issues for about 3 weeks before realizing that it was a faulty NIC issue. Is the ISA dropping \Not responding to packets on both interfaces or just one?
0
 

Author Comment

by:Key2IT
ID: 34921419
Sorry guys havnt been able to reply. I'm waiting for it to crash again so I can do some more testing but hasnt dies since 9 days.
will keep you posted.

Cheers
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

628 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question