Solved

IIS 8.5 NOT allowing Web App Access via Forefront TMG

Posted on 2016-07-26
3
30 Views
Last Modified: 2016-08-03
After building a new Web Application (a simple one-pager actually) with VS 2015 Rev 3, then publishing to WS 2012R2 IIS 8.5, and creating the simple rule in Forefront TMG to allow the site to be visible to the public internet, the site does not respond / times out.

Fiddler on the gateway machine where TMG is based states that all 200's are being returned for the page, and there is no access issue. When browsed from inside the private network, the URL is obviously going through TMG (port 80 is returned, not port 99 which is how the web application is setup internally).

I've been working on this for a day-and-a-half, and have pretty much had it. Other existing websites are responding without issue, even on the same web server.

I can only think this has something to do with the publishing process for IIS 8.5, or something to do with VS2015 Rev3, but I am hoping that someone out there has had an identical issue and resolved it.

Thank you.
0
Comment
Question by:Chaste Swedge
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 28

Expert Comment

by:Dan McFadden
ID: 41735488
Is this all on a single server or is the TMG a separate server from IIS?

Have you run the BPA Tool?

Also been discussed here on EE: https://www.experts-exchange.com/questions/25728039/I-have-a-publishing-issue-with-TMG.html

Dan
1
 

Accepted Solution

by:
Chaste Swedge earned 0 total points
ID: 41735502
Thanks Dan. After much consternation, research, trial and error, and rebuilding Web Server VS's multiple times (too many to count). I found the problem by mistake. As is usual for these types of problems, I was looking in the wrong place for an answer because the actual place 'seemed' to be working.

As I had hypothesised in my question, this issue had nothing to do with VS2015 Rev 3, nor all the new 'junk' that the system adds to a new web site upon creation, nor IIS 8.5.  

For some very strange reason, the external NIC connected to the public internet on the TMG box (separate Virtual Box - 17 in total spanning 2 large physical servers) had an issue. The reason I did not notice this at first was because this particular NIC has 13 public IP's assigned to it, and the ones utilized most often (for Exchange Server and VPN access) were working without issue.

However, while the new Web Server's public IP on the TMG box was placed on a unique IP on this NIC, it was not responding on the external WAN, but had no problems responding on the internal LAN. It took a client complaint for me to notice the problem even existed, and I found the problem when I switched the DNS assignment to a different public IP, and still there was no response on the outside.

It seems that several of the public IP's (but not all obviously) on this NIC were in fact NOT WORKING via the outside WAN. After resetting the NIC, all started working.

I am still baffled by the fact that two out of the 13 public IP's assigned to this NIC were working flawlessly and for many months, while others were not working at all. It's all THE SAME DAMN NIC!  Regardless, this can be an investigation for another time.

Thanks for your assistance Dan!
0
 

Author Closing Comment

by:Chaste Swedge
ID: 41740323
I found the problem myself.
0

Featured Post

Percona Live Europe 2017 | Sep 25 - 27, 2017

The Percona Live Open Source Database Conference Europe 2017 is the premier event for the diverse and active European open source database community, as well as businesses that develop and use open source database software.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

International Data Corporation (IDC) prognosticates that before the current the year gets over disbursing on IT framework products to be sent in cloud environs will be $37.1B.
It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
The purpose of this video is to demonstrate how to exclude a particular blog category from the main blog page. This is can be used when a category already has its own tab, or you simply want certain types of posts not to show up on the main blog. …
The purpose of this video is to demonstrate how to Import and export files in WordPress. This will be demonstrated using a Windows 8 PC. Go to your WordPress login page. This will look like the following: mywebsite.com/wp-login.php : Click on Too…

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question