eyad77
asked on
some sites are not loading after removing ISA proxy
strange situation here. after removing an ISA web proxy server from the LAN and configuring GPO to go directly to Internet, some sites are not opening (loading infinitely) like Hotmail for example. anyone can help with that ?
Thanks
Thanks
ASKER
mean unchecked the "enable proxy setting" for the old proxy server
That wouldn't have matter,...if the proxy is not located the default browser behavior is to ignore the proxy settings and go direct anyway.
Did you uninstall the Firewall Client Software on the workstations too?
Did you uninstall the Firewall Client Software on the workstations too?
ASKER
no firewall client was used. the ISA was used as a web proxy only.
I've noticed that most of the not-loading sites are HTTPS based. adding a public ISP proxy to the HTTPS traffic only made it work!
I've noticed that most of the not-loading sites are HTTPS based. adding a public ISP proxy to the HTTPS traffic only made it work!
do the clients have default ISA server ip address as default gateway ?
ASKER
no...the core switch is used as the default gateway which is routed to either other LANs or the Internet
do you have all other LANS ( subnet address ) added to internal netowrk on your TMG server?
Can you ping clients from TMG server ? ( this need an access rule to allow that from localhost to internal)
Can you ping clients from TMG server ? ( this need an access rule to allow that from localhost to internal)
ASKER
please re-read my question!
Ohh, sorry.
from client please run
tracert 8.8.8.8
do packets routed throw a correct path ?
from client please run
tracert 8.8.8.8
do packets routed throw a correct path ?
You have another Firewall somewhere.
The firewall may not allow the Clients out to the Internet properly since it would have (at least should have) been restricted to only allowing the IP# of the ISA/TMG to go out in order to prevent users from bypassing the ISA/TMG while it was still being used. IF this was not corrected when you removed the ISA/TMG you would have problems.
The firewall may not allow the Clients out to the Internet properly since it would have (at least should have) been restricted to only allowing the IP# of the ISA/TMG to go out in order to prevent users from bypassing the ISA/TMG while it was still being used. IF this was not corrected when you removed the ISA/TMG you would have problems.
ASKER
we have an IBM physical firewall in place, we made sure it's not configured to block any web traffic. the problem is that only some sites are not loading!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
do you mean to use default gateway?