ISA server

Hi All,

We have a website and can be accessed by internal users via vpn and external users from outsitde network and incoming requests from external users will talk to Bluecoat and then to IIS.

Now we are planing to migrate to ISA server from Bluecoat.

We have hosted website in  server1(xxx.xxx.x.xx) in port 1610 for internal users and for external users in port 1620.

http://xxx.xx.x.xx:1610/default.aspx(internal)

http://xxx.xx.x.xx:1620/default.aspx(externa1)

The above sites are working fine via VPN .

We have test server for ISA (server2), as part of testing we have created simulated external environment to see if external user requests are passing thru ISA server or not and we are trying to access the url via simulated external environment and getting message 'This webpage requires to login 'and not allowing to go further.
 
From application perspective, do I need to configure in IIS anything related to ISA?

ISA server configured for the above site.

How to trouble shoot above issue? I have access to application server but  do not have access to either simulated external environment or ISA server.

Any ideas?

dsk1234Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Keith AlabasterEnterprise ArchitectCommented:
What do you mean ISA is configured for the above site - Access rule? Published? http? https? what authentication method? What provides the DNS? What version of ISA? Which service pack? Is ISA proxy only or Proxy & firewall? What did you see when you run the ISA best practice analyser? What do you get when you view the ISA realtime log monitor?

Loads of ideas but like you, would be just farting in the breeze without any sensible info to work with
dsk1234Author Commented:

Hi Keith,

Thanks for the quick response, I am basically an application developer, from application perspective I have deployed application and working fine.I was told by network admin that he configured ISA server and tried to access the application from simulated external envirornment and getting message 'This webpage requires to login 'and not allowing him to go further.Not sure how he configured ISA serer and sent below log info from ISA server.

log time   dest ip         dest port protocol   action                                 rule                    client ip    

3.22 pm  10.1.100.10     80       HTTP       Failed connection attempt  samplerule       10.1.100.10  
     
3.23 pm  10.1.100.10     80       HTTP       Initiated connection                                     10.1.100.10

3.23 pm  10.1.100.10     80       HTTP       Closed connection                                     10.1.100.10
 
3.23 pm  10.1.100.10     443      HTTP       Initiated connection                                  10.1.100.10    
     
3.23 pm  10.1.100.10     443      HTTP       Closed connection                                   10.1.100.10

From the above log info, I observed both client and dest ip are same.




Guillermo FeijóoSystems administratorCommented:
Hi:

     Is the isa server configured to test the credentials for the users against a domain controler? It seems that the user credentials are the problem. tell your mate to check it and post a feedback.
 
     
     
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

Keith AlabasterEnterprise ArchitectCommented:
Another expert has jumped on the question so you do not need me to be involved anymore. I'll move on.

Keith
dsk1234Author Commented:
The issue is resolved by configuring correct Port in ISA server.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
dsk1234Author Commented:
Thank all of you.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.