External Access Problem Through ISA 2000

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

I am having a problem with an application on a client machine. It is not
able to connect to the internet to get data from a server that it needs to
communicate with when it in on the internal network. I am running SBS2003
Premium (no SP1 yet) with a 2 NIC config. The server's external NIC is
connected to a hardware firewall so they are going through the server to
reach the internet. ISA 2000 is installed and running. If I connect the
client computer to the hardware firewall, the application works fine so it
appears ISA is not configured correctly. What settings should I be looking
at?

- The client machine is able to connect to various websites.
- The client machine has the firewall client installed and configured
(automatically finds the SBS\ISA server).
- I have tried running the application as a normal user and as domain admin
and both fail.
- Both the normal user and the domain admin are in the Internet Users group.

- I have a Site and Content Rule to allow SBS internet access to all
external destinations for SBS Internet Users
- I have a Protocol Rule to allow SBS internet access for all IP traffic for
SBS Internet Users.
- I have IP packet Filters to allow traffic in both directions for the port
that the application uses including FTP. (My understanding is that this is
only needed if the traffic is initiated from the server and clients can
initiate traffic on any port.)
- I have a Protocol Definition with a Primary Connection Direction of
outbound with outbound and inbound Secondary Connection ranges specified.

Do I need to add a new Application Setting in the Firewall Client properties
in ISA? I saw this but was unsure what to setup.

Another problem that I have been able to work around but may be related...
When I do windows update, various patches fail to install on client or server
machines. Some I can download from www.microsoft.com/downloads and install
that way; however, even some of them appear to download the file (based on
time) but the file size is small (5kb or so) and Windows complains that it is
not a valid executable. An example of this is the spyware beta install.

Any thoughts would be appreciated.
Steve



.

Relevant Pages

  • Re: RWW Disconnecting
    ... I have been connected from a remote site for about 3 ... DHCP server and even a wireless access ... the key codes to for Internet access. ... Client Workstations} ...
    (microsoft.public.windows.server.sbs)
  • Re: RWW Disconnecting
    ... Server to test the issue. ... I understand that remote client encounts following error message when RWW ... I strongly suggest that we rerun the Configure E-mail and Internet ...
    (microsoft.public.windows.server.sbs)
  • RE: Error.htm when using connectcomputer
    ... On the SBS server, run Set Up Computer Wizard to create all the remote ... Under Client Applications, uncheck everything except ... Start Internet Explorer. ...
    (microsoft.public.windows.server.sbs)
  • Re: RWW Disconnecting
    ... I understand that remote client encounts following error message when RWW ... I strongly suggest that we rerun the Configure E-mail and Internet ... 825763 How to configure Internet access in Windows Small Business Server ...
    (microsoft.public.windows.server.sbs)
  • RE: ISA blocking some client internet access?
    ... and installed ISA Server 2004, the internal clients cannot browse the ... address and external IP address of the SBS Server are in the same subnet ... Open the Server management console, navigate to "Internet and E-mail", ... On the client side, type NSLOOKUP from the command prompt, then input ...
    (microsoft.public.windows.server.sbs)