Re: Mcafee FTP Mirror Sites and ISA Server 2004 Authentication
- From: "Justin Thyme" <jit@xxxxxxx>
- Date: Mon, 14 Nov 2005 15:24:02 -0600
Hello and thanks for your responce:
I see that connections to hotmail also result in the same error
I've setup one rule that allows anything to anywhere (just for a test)
The following describes the interaction between the client PC and the
internal interface of the ISA Server.
Client IP: <the client IP Address>
Destination IP: < the internal ISA interface IP>
Destination Port: 80
Protocol: http
Action: Denied connection
Rule: <Blank>
http status code: 12209 The ISA Server requires authorization to fulfill the
request. Access to the Web Proxy service is denied.
Client Username: anonymous
Source Network: <Blank>
Destination Network: <Blank>
HTTP Method: GET
URL: http://www.hotmail.com
Client IP: <the client IP Address>
Destination IP: < the internal ISA interface IP>
Destination Port: 80
Protocol: http
Action: Failed Connection Attempt
Rule: <Blank>
http status code: 5
Client Username: anonymous
Source Network: <Blank>
Destination Network: <Blank>
HTTP Method: GET
URL: http://www.hotmail.com
Client IP: <the client IP Address>
Destination IP: <hotmail server IP address)
Destination Port: 80
Protocol: http
Action: Allowed Connection
Rule: Allow All - Test
http status code: 5
Client Username: DOMAIN\UserName
Source Network: Internal
Destination Network: External
HTTP Method: GET
URL: http://www.hotmail.com
Client IP: <the client IP Address>
Destination IP: <hotmail server IP address)
Destination Port: 8080
Protocol: Web Proxy Client
Action: Initiated Connection
Rule: <Blank>
http status code: <Blank>
Client Username: <Blank>
Source Network: Internal
Destination Network: Local Host
HTTP Method: -
URL: -
Client IP: <the client IP Address>
Destination IP: <hotmail server IP address)
Destination Port: 8080
Protocol: Web Proxy Client
Action: closed Connection
Rule: <Blank>
http status code: <Blank>
Client Username: <Blank>
Source Network: Internal
Destination Network: Local Host
HTTP Method: -
URL: -
Client IP: <the client IP Address>
Destination IP: <hotmail server IP address)
Destination Port: 80
Protocol: http
Action: closed Connection
Rule: Allow All - Test
http status code: 200
Client Username: DOMAIN\UserName
Source Network: Internal
Destination Network: External
HTTP Method: GET
URL: -
This above sequence repeats through various parts of the hotmail login and
passport servers.
I see the same when trying the FTP site for ftp.nai.com. So I think
something is hosed in my configuration.
Any ideas?
Thanks
"Phillip Windell" <@.> wrote in message
news:uHDWCCT6FHA.3544@xxxxxxxxxxxxxxxxxxxxxxx
> You have to create an anonymous access rule for that source/destination
> for
> FTP. When you machine tries to perform its task it is doing so under that
> "service account" that runs the McAfee Service. When you manually do it
> you
> are doing it under your own account.
>
> --
> Phillip Windell [MCP, MVP, CCNA]
> www.wandtv.com
> -----------------------------------------------------
> Understanding the ISA 2004 Access Rule Processing
> http://www.isaserver.org/articles/ISA2004_AccessRules.html
>
> Microsoft Internet Security & Acceleration Server: Guidance
> http://www.microsoft.com/isaserver/techinfo/Guidance/2004.asp
> http://www.microsoft.com/isaserver/techinfo/Guidance/2000.asp
>
> Microsoft Internet Security & Acceleration Server: Partners
> http://www.microsoft.com/isaserver/partners/default.asp
> -----------------------------------------------------
>
>
> "Justin Thyme" <jit@xxxxxxx> wrote in message
> news:uAmptDw5FHA.268@xxxxxxxxxxxxxxxxxxxxxxx
>> Hello All,
>>
>> We have a McAfee AV server behide the firewall. The server periodically
>> mirrors a directory on the McAffe server. McAfee calls it a "Mirror
>> Task".
>>
>> When this task runs the connection fails. The ISA server shows that the
>> connection initiated by this program is failing to authenticate with the
>> proxy server.
>>
>> We have a FTP rule allowing connection from the server, to the Mcafee
>> servers.
>>
>> When I try using a commandline FTP (i.e. ftp.nai.com) it works fine. I
>> can
>> do the samething using the browser i.e ftp://ftp.nai.com.
>>
>> The question I have is what user or process is trying to authenticate?
>>
>> Any one have experiance with this program?
>>
>> Thanks.
>>
>>
>
>
.
- References:
- Mcafee FTP Mirror Sites and ISA Server 2004 Authentication
- From: Justin Thyme
- Mcafee FTP Mirror Sites and ISA Server 2004 Authentication
- Prev by Date: Publishing pop3 for external access BUT for Internal ?
- Next by Date: Re: ISA pulling specific IP traffic to access a web site
- Previous by thread: Mcafee FTP Mirror Sites and ISA Server 2004 Authentication
- Next by thread: Who's using Messenger trough ISA?
- Index(es):
Relevant Pages
|
|
