Re: ISA 2004 fails - starts to block HTTPS for no reason.....

SBS doesn't support a PPPoE connection.. stick a router out there.

Cris Hanna (SBS-MVP) wrote:

SBS hates having the PPPoE software for making the connection
Put a router which can do the PPPoE between the external nic and the dsl modem/gateway

--
Cris Hanna [SBS-MVP]
--------------------------------------
Please do not respond directly to me, but only post in the newsgroup so all can take advantage

"Jeff Meager" <JeffMeager@xxxxxxxxxxxxxxxxxxxxxxxxx
<mailto:JeffMeager@xxxxxxxxxxxxxxxxxxxxxxxxx>> wrote in message
news:9DDA3392-794F-4DF2-9576-E0C5C51C79F4@xxxxxxxxxxxxxxxx
Hi people. We run Premium at our office and at a few clients. We
have an
issue that has occurred at our office and at a clients. The issue
that
occurs is that the websites for no reason suddenly start to be
blocked eg OWA
RWW etc. Basically anything that uses HTTPS. I have logged the
isa packets
for 80 and 443 and find that the initial port 80 request makes it
through,
the server attempts to redirect to 443 and isa blocks it with the
last
default rule every time. the fix is a reboot however one of my
clients is
having to do this weekly which makes the system seem to be rubbish
to them.

This doesn'd happen on some other sites I have using Premium and the
difference here is they have public IP's on a second network card and
straight onto the net.
The problem sites however have ADSL modems and the servers make
the PPPOE
dialup connections.

So looking at it it must have something to do with the PPPOE
connections on
these servers however I can't see why that would cause ISA to
suddenly decide
it has no matching rule and decides to block the https. Remember
a reboot
fixes it.

I have tried disconnecting the connection and reconnecting, no good. Stopping ISA firewall service normally just confuses the dialup
connection so
it can't be redialed.

Any ideas would be appreciated as I can't find a logical reason
for this.
Oh, and every other ISA service works fine when the https is being
blocked.

Regards,

Jeff Meager

.

Relevant Pages

  • Re: sending message to PC that is offline
    ... this is a characteristic of PPPoE. ... not all DSL connections use PPPoE or PPPoA; ... the user isn't actively using the Internet connection). ... hardware (such as a conventional dial-in modem and phone line). ...
    (microsoft.public.win32.programmer.tapi)
  • Re: ISA 2004 fails - starts to block HTTPS for no reason.....
    ... Put a router which can do the PPPoE between the external nic and the dsl modem/gateway ... I have logged the isa packets ... The problem sites however have ADSL modems and the servers make the PPPOE ... I have tried disconnecting the connection and reconnecting, ...
    (microsoft.public.windows.server.sbs)
  • Re: ISA 2004 - Microsoft Firewall Event ID 14147
    ... PPPoE connection also isn't available till late in the boot process (which ... only those ports I want open are forwarded to the server. ... The 3COM NIC for Bellsouth connects directly to the DSL modem, ...
    (microsoft.public.windows.server.sbs)
  • Re: ISA 2004 fails - starts to block HTTPS for no reason.....
    ... Yes they are that cheap compared to the server outlay but after extracting ... PPPOE can have a static address on SBS 2003. ... On ISA the design assumption is that you won't have a static connection. ...
    (microsoft.public.windows.server.sbs)
  • Re: How make ISA on SBS 2003 Premium dial on startup
    ... manually to use the the PPPoE dialup connection. ... When you complete the CEICW, the PPPoE ... I suggest you to remove the dial up entry in the ISA 2000 and follow the KB article to re-run the CEICW. ...
    (microsoft.public.windows.server.sbs)
Loading