RE: RWW not accessible over web
- From: v-terliu@xxxxxxxxxxxxxxxxxxxx (Terence Liu [MSFT])
- Date: Wed, 16 Apr 2008 11:09:38 GMT
Hello John,
Thank you for your update.
This is really strange issue, and we may need more time to troubleshoot it.
First, I find following error in your event logs:
===============
Event Type: Information
Event Source: WinHttpAutoProxySvc
Event Category: None
Event ID: 12517
Date: 4/14/2008
Time: 12:01:23 AM
User: N/A
Computer: LONG2003
Description:
The WinHTTP Web Proxy Auto-Discovery Service suspended operation.
================
The "WinHTTP Web Proxy Auto-Discovery Service" should not start on SBS,
please try to stop it and try this issue.
I also find following error in your event logs about ISA, and there are
many many warning about Symantec AntiVirus.
============================
Event Type: Error
Event Source: Microsoft ISA Server Control
Event Category: None
Event ID: 14079
Date: 4/15/2008
Time: 5:10:12 PM
User: N/A
Computer: LONG2003
Description:
Due to an unexpected error, the service fwsrv stopped responding to all
requests. Stop the service or the corresponding process if it does not
respond, and then start it again. Check the Windows event Viewer for
related error messages.
==============================
==========================
Event Type: Error
Event Source: Microsoft ISA Server Web Proxy
Event Category: None
Event ID: 14197
Date: 4/5/2008
Time: 11:01:48 PM
User: N/A
Computer: LONG2003
Description:
ISA Server failed to write content to the cache file.
=========================
Based on my research, I suggest you try the following steps:
Suggestion 1: Please uninstall Symantec AntiVirus from SBS. "The service
fwsrv stopped responding to all requests" and "ISA Server failed to write
content to the cache file" may all cause by the AntiVirus real-time scan.
Suggestion 2: Increase the value of Connection limit time
Open the ISA Server management console, navigate to Configuration->
General-> Define Connection Limits-> Connection Limit-> Limit the number of
connection-> Connection limit per client (TCP and non-TCP).
Please increase the value to 160. If the original value is 160, please
uncheck the "Limit the number of connections" option.
We need to restart the ISA firewall service after modifying the value of
the connection limit time.
Suggestion 3: Clear and recreate the ISA Cache
In addition, I would like to suggest you clear the ISA Cache, you can
perform the following steps:
1. On the ISA Server computer, stop the Microsoft Firewall service. To do
so:
1). Click Start, click Run, type services.msc in the Open box, and then
click OK.
2). Right-click Microsoft Firewall, and then click Stop.
2. Start Windows Explorer.
3. Locate the Urlcache folder.
4. In the Urlcache folder, locate the file that has the .cdat file name
extension.
5. Right-click the .cdat file, and then click Delete.
6. When you are prompted to confirm the removal of the .cdat file, click
Yes.
If you are prompted to delete the .cdat file because it is too big for the
recycle bin, click Yes.
7. Restart the Microsoft Firewall service.
More information:
How to delete the Web cache in Internet Security and Acceleration Server
2004
http://support.microsoft.com/default.aspx?scid=kb;en-us;838248
Suggestion 4:
Install ISA server 2004 sp3. If had applied it before, please try to apply
it again.
Microsoft? Internet Security and Acceleration (ISA) Server 2004 Standard
Edition Service Pack 3
http://www.microsoft.com/downloads/details.aspx?familyid=A05A074A-5033-4792-
AF8B-58B90D841436&displaylang=en
Suggestion 5:
This problem could also be caused by the EDNS0 query.
Windows Server 2003 supports Extension Mechanisms for DNS (EDNS0) function
which permits the use of larger User Datagram Protocol (UDP) packet sizes.
However, some firewall programs or routers may not permit UDP packets that
are larger than 512 bytes. As a result, these DNS packets may be blocked.
I would like to suggest you try the following steps:
1. Insert SBS 2003 CD2, navigate to \Support\Tools\ Double-click
suptools.msi to install the Windows 2003 support tools.
2. At a command prompt, type the following command, and then press ENTER:
"dnscmd /config /enableednsprobes 0" (without the quotation marks)
The following information appears:
Registry property enableednsprobes successfully reset.
Command completed successfully.
After you run this command, Windows Server 2003 DNS no longer advertises
its EDNS0 capabilities.
As a result, the Windows Server 2003 DNS server will not be sent UDP
packets that are larger than 512 bytes.
For more information, please refer to this KB article:
828263 DNS query responses do not travel through a firewall in Windows
Server 2003
http://support.microsoft.com/?id=828263
If we cannot resolve the issue after we perform the above steps, please
help me collect some information for further investigation:
Does this issue happen on all client computers or only the 3 client
computers?
I hope these steps will give you some help.
Thanks and have a nice day!
Best regards,
Terence Liu(MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| Newsgroups: microsoft.public.windows.server.sbs
| From: v-terliu@xxxxxxxxxxxxxxxxxxxx (Terence Liu [MSFT])
| Organization: Microsoft
| Date: Wed, 16 Apr 2008 11:07:43 GMT
| Subject: RE: RWW not accessible over web
| X-Tomcat-NG: microsoft.public.windows.server.sbs
| MIME-Version: 1.0
| Content-Type: text/plain
| Content-Transfer-Encoding: 7bit
|
| Email from customer:
| =============================
|
| Terence,
|
| I ran the tests with SBS_Internet_Users only to no avail:
|
| Answers to your questions below:
|
| 1. Already set
| 2. Already set
| 3. Changed with no access
|
| I then ran your requested route & ipconfig on an WinXP SP2 and WinVista
| Ultimate PC
|
| I have attached your requested files.
|
.
- Follow-Ups:
- RE: RWW not accessible over web
- From: Terence Liu [MSFT]
- RE: RWW not accessible over web
- References:
- RE: RWW not accessible over web
- From: Terence Liu [MSFT]
- RE: RWW not accessible over web
- From: Terence Liu [MSFT]
- RE: RWW not accessible over web
- From: Terence Liu [MSFT]
- RE: RWW not accessible over web
- From: Terence Liu [MSFT]
- RE: RWW not accessible over web
- From: Terence Liu [MSFT]
- RE: RWW not accessible over web
- Prev by Date: Re: Windows won't start after AD restore
- Next by Date: Re: RWW Setup assistance
- Previous by thread: RE: RWW not accessible over web
- Next by thread: RE: RWW not accessible over web
- Index(es):
Relevant Pages
|
