Re: ISA 2004 blocking a page
- From: Brad <Brad@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 26 Dec 2006 09:32:01 -0800
Thanks for the reply. Yes the site loads fine and you do need to login to
access the page where the particular script is not working. Yes, port 817 is
referenced in the log:
209.192.44.160:817 Unidentified IP Traffic Denied Connection
I put in the semicolon since in the log it is in a separate column but if
you look at my cut and paste the port reference to the blocked traffic is
there.
I have to assume it is http traffic? I'm trying to figure out what the
script could be doing to give the error: "Unidentified IP Traffic Denied
Connection" but don't know enough about what the ISA log is telling me to
fix this. Any more thoughts?
Brad
"Phillip Windell" wrote:
Forget port numbers..
Is it HTTP?
HTTP is still HTTP no matter what port is involved.
If it is using a non-standard port it will be shown in the URL like this:
http://somehost.somedomain.com:817
I don't see that anywhere.
The normal HTTP Protocol used in a rule will allow any port with HTTP that
is specified in the URL like above. Nothing "special" is ever done for it.
The zweb.php loads fine for me, aside from not having my own login. I have
certainly not done anything special to make it work.
--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com
The views expressed are my own (as annoying as they are), and not those of
my employer or anyone else associated with me.
-----------------------------------------------------
"Brad" <Brad@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:C300D348-479F-43C9-AFDB-EBAD2E972388@xxxxxxxxxxxxxxxx
I have a customer running SBS 2003 and ISA 2004. Just certain pages using
port 817 with a php script load as Page not available. This is where the
customer needs to enter orders. I can access the pages from the server. .
Below is a cut and paste from the ISA log:
Original Client IP Client Agent Authenticated Client Service Server Name
Referring Server Destination Host Name Transport MIME Type Object Source
Source Proxy Destination Proxy Bidirectional Client Host Name Filter
Information Network Interface Raw IP Header Raw Payload Source Port
Processing Time Bytes Sent Bytes Received Result Code HTTP Status Code
Cache
Information Error Information Log Record Type Log Time Destination IP
Destination Port Protocol Action Rule Client IP Client Username Source
Network Destination Network HTTP Method URL
0.0.0.0 SERVER - TCP - - 4518 0 0 0 0x800733f5 0x0 0x0 Firewall 12/14/2006
11:30:00 AM 209.192.44.160 817 Unidentified IP Traffic Denied Connection
10.10.10.6 Internal External - -
0.0.0.0 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) No Proxy
SERVER 209.192.44.191 TCP Internet - - - - - - 0 328 1439 494 200
0x60000000
0x480 Web Proxy Filter 12/14/2006 11:29:58 AM 209.192.44.191 80 http
Allowed
Connection Custom Allows 10.10.10.6 anonymous Internal External GET
http://209.192.44.191/lnk/dev/new/buyit/zweb.php?id=45816e32a8769&vkorg=1000&order_type=152&vtweg=00&spart=00
0.0.0.0 SERVER - TCP - - 4518 0 0 0 0x800733f5 0x0 0x0 Firewall 12/14/2006
11:30:09 AM 209.192.44.160 817 Unidentified IP Traffic Denied Connection
10.10.10.6 Internal External - -
0.0.0.0 SERVER - TCP - - 4518 0 0 0 0x800733f5 0x0 0x0 Firewall 12/14/2006
11:30:03 AM 209.192.44.160 817 Unidentified IP Traffic Denied Connection
10.10.10.6 Internal External - -
I cannot for the life of me figure out why any traffic is being blocked on
port 817. I have configured a rule to allow all outbound traffic on port
817
from Anywhere, All Networks, All Protected Networks, Internal to External
for
All Users, All Authenticated Users, SBS Internet Users, System and Network
Service.
Please help.
- Prev by Date: Re: about isa2k6 enterprise
- Next by Date: Publishing OWA with ISA 2006
- Previous by thread: about isa2k6 enterprise
- Next by thread: Re: ISA 2004 blocking a page
- Index(es):
Relevant Pages
|
