Solved

Unusual port numbers recorded when accessing IIS website through a Reverse Proxy

Posted on 2016-07-21
1
39 Views
Last Modified: 2016-07-21
Hello Experts

A customer of mine has an internal webserver that logs all accesses.  They used to use NAT to allow external access to this webserver and each access was recorded in the IIS logs as coming in on port 443 (correctly).

I have recently deployed an IIS based Reverse Proxy for them (along with DMZ / ASA firewall etc) and now the logs on the internal webserver records the access attempts as coming from the correct customer public IP addresses but on ports other than 443 (see attached image).

Everything seems to be working correctly and the firewall is only allowing 443 access from outside in so I am at a loss at the moment to explain the odd ports in the IIS logs - if anyone can offer a reason for this I would be most grateful.

Thanks.
1.jpg
0
Comment
Question by:Plagus
1 Comment
 
LVL 30

Accepted Solution

by:
renazonse earned 500 total points
ID: 41722994
I feel this is normal behavior. Access from the client source port will be something random with this setup like outbound access through your ASA to external services. If you watch the logs in the ASA you'll see the same situation reporting client source ports with normal destination ports.
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Here are the symptoms: You start receiving calls from users that one of your legacy web apps isn't coming up, so you log into your IIS 5 server to check it out.  When you pull up the services, you notice that the WWW Publishing service isn't runn…
Prologue It is often required to host multiple websites on a single instance of IIS, mostly in development environments instead of on production servers. I am sure it is not much a preferred solution on production servers but this is at least a pos…
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

815 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now