Problems with bypass rules in ISA 2004 SP3
- From: langfb@xxxxxxxxxxx
- Date: Wed, 16 Jul 2008 19:21:12 -0700 (PDT)
Hi All,
Hopefully someone can answer this question for me as it has been
causing me much grief and annoyance for some time now. We have ISA
2004 standard SP3 installed on Windows 2003 Server standard edition.
The server only has one network card and therefore it is in cached
mode.
We chain from our proxy server to an upstream proxy server but need to
bypass for one IP address from licensing reasons. Therefore there has
been an additional network created and a network rule to directly
route to that network. I have also created a chaining rule for this
network to retrieve requests directly.
This appears to be working as far as I can tell from the logs, I have
enabled the "Allow HTTP/HTTPS requests from ISA server to specified
sites" and added the required URL to this rule group "System Policy
Allowed Sites".
The error message I get is Error Code: 502 Proxy Error. The host
server is unreachable. (10065)
If I disable the firewall on the ISA server itself and open the URL in
the web browser it goes directly to that site??? Therefore I know the
routes and NAT rules that are in place are working.
Is there any way this can be done in cached mode or am I trying to do
the impossible, it shouldn't be a problem as ISA 2000 works with this
configuration perfectly?
Any help would be greatly appreciated.
Best Regards
Ben
.
- Follow-Ups:
- Re: Problems with bypass rules in ISA 2004 SP3
- From: langfb
- Re: Problems with bypass rules in ISA 2004 SP3
- Prev by Date: Re: IP Address ends with 0
- Next by Date: SYN-attacks
- Previous by thread: Re: IP Address ends with 0
- Next by thread: Re: Problems with bypass rules in ISA 2004 SP3
- Index(es):
Relevant Pages
|
