ISA server

Posted on 2011-10-02
Medium Priority
Last Modified: 2012-05-12
Hi All,

We have a website and can be accessed by internal users via vpn and external users from outsitde network and incoming requests from external users will talk to Bluecoat and then to IIS.

Now we are planing to migrate to ISA server from Bluecoat.

We have hosted website in  server1(xxx.xxx.x.xx) in port 1610 for internal users and for external users in port 1620.



The above sites are working fine via VPN .

We have test server for ISA (server2), as part of testing we have created simulated external environment to see if external user requests are passing thru ISA server or not and we are trying to access the url via simulated external environment and getting message 'This webpage requires to login 'and not allowing to go further.
From application perspective, do I need to configure in IIS anything related to ISA?

ISA server configured for the above site.

How to trouble shoot above issue? I have access to application server but  do not have access to either simulated external environment or ISA server.

Any ideas?

Question by:dsk1234
  • 3
  • 2
LVL 51

Expert Comment

by:Keith Alabaster
ID: 36899738
What do you mean ISA is configured for the above site - Access rule? Published? http? https? what authentication method? What provides the DNS? What version of ISA? Which service pack? Is ISA proxy only or Proxy & firewall? What did you see when you run the ISA best practice analyser? What do you get when you view the ISA realtime log monitor?

Loads of ideas but like you, would be just farting in the breeze without any sensible info to work with

Author Comment

ID: 36899848

Hi Keith,

Thanks for the quick response, I am basically an application developer, from application perspective I have deployed application and working fine.I was told by network admin that he configured ISA server and tried to access the application from simulated external envirornment and getting message 'This webpage requires to login 'and not allowing him to go further.Not sure how he configured ISA serer and sent below log info from ISA server.

log time   dest ip         dest port protocol   action                                 rule                    client ip    

3.22 pm     80       HTTP       Failed connection attempt  samplerule  
3.23 pm     80       HTTP       Initiated connection                           

3.23 pm     80       HTTP       Closed connection                           
3.23 pm     443      HTTP       Initiated connection                            
3.23 pm     443      HTTP       Closed connection                         

From the above log info, I observed both client and dest ip are same.


Expert Comment

by:Guillermo Feijóo
ID: 36902599

     Is the isa server configured to test the credentials for the users against a domain controler? It seems that the user credentials are the problem. tell your mate to check it and post a feedback.
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

LVL 51

Expert Comment

by:Keith Alabaster
ID: 36903922
Another expert has jumped on the question so you do not need me to be involved anymore. I'll move on.


Accepted Solution

dsk1234 earned 0 total points
ID: 36987892
The issue is resolved by configuring correct Port in ISA server.

Author Closing Comment

ID: 37013575
Thank all of you.

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
A phishing scam that claims a recipient’s credit card details have been “suspended” is the latest trend in spoof emails.
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
With just a little bit of  SQL and VBA, many doors open to cool things like synchronize a list box to display data relevant to other information on a form.  If you have never written code or looked at an SQL statement before, no problem! ...  give i…
Suggested Courses
Course of the Month16 days, 23 hours left to enroll

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question