Re: ISA 2004 fails - starts to block HTTPS for no reason.....

SBS hates having the PPPoE software for making the connection

Put a router which can do the PPPoE between the external nic and the dsl modem/gateway

--
Cris Hanna [SBS-MVP]
--------------------------------------
Please do not respond directly to me, but only post in the newsgroup so all can take advantage
"Jeff Meager" <JeffMeager@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:9DDA3392-794F-4DF2-9576-E0C5C51C79F4@xxxxxxxxxxxxxxxx
Hi people. We run Premium at our office and at a few clients. We have an
issue that has occurred at our office and at a clients. The issue that
occurs is that the websites for no reason suddenly start to be blocked eg OWA
RWW etc. Basically anything that uses HTTPS. I have logged the isa packets
for 80 and 443 and find that the initial port 80 request makes it through,
the server attempts to redirect to 443 and isa blocks it with the last
default rule every time. the fix is a reboot however one of my clients is
having to do this weekly which makes the system seem to be rubbish to them.

This doesn'd happen on some other sites I have using Premium and the
difference here is they have public IP's on a second network card and
straight onto the net.
The problem sites however have ADSL modems and the servers make the PPPOE
dialup connections.

So looking at it it must have something to do with the PPPOE connections on
these servers however I can't see why that would cause ISA to suddenly decide
it has no matching rule and decides to block the https. Remember a reboot
fixes it.

I have tried disconnecting the connection and reconnecting, no good.
Stopping ISA firewall service normally just confuses the dialup connection so
it can't be redialed.

Any ideas would be appreciated as I can't find a logical reason for this.
Oh, and every other ISA service works fine when the https is being blocked.

Regards,

Jeff Meager

Relevant Pages

  • Re: L2TP Site-to-Site ISA 2004 Failing Behind Nat Devices
    ... However, when both ISA ... of the ISA servers so that they are not connected directly to the Internet in ... I want the most secure connection available. ... (which is a SonicWALL TZ170 Standard OS). ...
    (microsoft.public.isa.vpn)
  • Re: ISA 2004 fails - starts to block HTTPS for no reason.....
    ... On ISA the design assumption is that you won't have a static connection. ... PPPOE is an advertised feature that doesn't work as advertised i.e. it has technical problems. ... Not for any of my clients. ... PPPoE client on SBS servers. ...
    (microsoft.public.windows.server.sbs)
  • Re: sending message to PC that is offline
    ... this is a characteristic of PPPoE. ... not all DSL connections use PPPoE or PPPoA; ... the user isn't actively using the Internet connection). ... hardware (such as a conventional dial-in modem and phone line). ...
    (microsoft.public.win32.programmer.tapi)
  • Re: VPN Bi directional connection problems
    ... and view files but I tried everything I could to get a connection from the ... Branch servers to the Main office servers. ... The solution seems to be a bit of overkill but I installed ISA Standard ... router and firewall to my Branch offices using linksys rv042 vpn routers. ...
    (microsoft.public.isa.configuration)
  • Re: ISA 2004 fails - starts to block HTTPS for no reason.....
    ... SBS doesn't support a PPPoE connection.. ... Cris Hanna (SBS-MVP) wrote: ... the server attempts to redirect to 443 and isa blocks it with the ... I have tried disconnecting the connection and reconnecting, ...
    (microsoft.public.windows.server.sbs)
Loading