RE: RWW not accessible over web
- From: v-terliu@xxxxxxxxxxxxxxxxxxxx (Terence Liu [MSFT])
- Date: Tue, 22 Apr 2008 04:07:46 GMT
Hello John,
Thank you for your update.
First please let me know that:
1. Do you access the RWW from internal client or external?
2. Can you access RWW from SBS itself thru http://localhost/remote/?
Based on my research, I suggest we try the following steps to see if we can
resolve this issue:
1. Please perform the following steps to completely reconfigure the VPN and
RWW on SBS:
1) Disable RRAS
a. Schedule a network down time.
b. Please open Routing and Remote Access console on SBS thru run command
"rrasmgmt.msc"
c. Right click the SBSname (local), select Disable Routing and Remote
Access console
2) Run CEICW on SBS
You have to rerun the CEICW to make sure your SBS 2003 server have right
network configuration. The CEICW will publish the RWW to external.
a. On the SBS 2003 Server open the Server Management console. Go to
Standard Management\To Do List.
b. Click the "Connect to the Internet" link.
c. When navigating to the Firewall page, select "Enable firewall" and click
Next.
d. On the "Services Configuration" page, select all the items and then
click Next.
e. On the "Web Services Configuration" page, make sure "Allow access to the
entire Web site from the Internet" is selected. If you select "Allow access
to only the following Web site services from the Internet", make sure all
items in the list are selected. Click Next.
f. On the "Web Server Certificate" page, choose to create a new Web server
certificate and then type the public domain name (your public DNS name)
that you will use to access OWA and RWW (for example, if your public domain
name that you use to access the sites is www.xyz.com, you should type
www.xyz.com as the new certificate name).
g. Go through the remaining steps.
3) Run Remote Access wizard
a. On the Small Business Server 2003-based server, click To Do List in the
left pane of the Server Management console.
b. Under Network Tasks, click Configure Remote Access.
c. Click Next, click Enable Remote Access, click to select the VPN Access
check box, and then click Next.
d. Type the fully qualified public domain name (your public DNS name) of
your server, click Next, and then click Finish.
e. When the wizard is completed, click Close.
Then, try the RWW again.
2. If the issue persists, please clear and recreate the ISA Cache
1) On the ISA Server computer, stop the Microsoft Firewall service. To do
so:
a. Click Start, click Run, type services.msc in the Open box, and then
click OK.
b. Right-click Microsoft Firewall, and then click Stop.
2) Start Windows Explorer.
3) Locate the Urlcache folder.
4) In the Urlcache folder, locate the file that has the .cdat file name
extension.
5) Right-click the .cdat file, and then click Delete.
6) When you are prompted to confirm the removal of the .cdat file, click
Yes.
If you are prompted to delete the .cdat file because it is too big for the
recycle bin, click Yes.
7) Restart the Microsoft Firewall service.
More information:
How to delete the Web cache in Internet Security and Acceleration Server
2004
http://support.microsoft.com/default.aspx?scid=kb;en-us;838248
I hope these steps will give you some help.
Thanks and have a nice day!
Best regards,
Terence Liu(MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| Thread-Topic: RWW not accessible over web
| thread-index: AcikEqofyAagmhzOS+qAHF0ZfeacrQ==
| X-WBNR-Posting-Host: 207.46.192.207
| From: =?Utf-8?B?Sm9obiBM?= <JohnL@xxxxxxxxxxxxxxxxxxxxxxxxx>
| References: <#qxb62veIHA.4744@xxxxxxxxxxxxxxxxxxxx>
<6Lqo1wQfIHA.4200@xxxxxxxxxxxxxxxxxxxxxx>
<KNDS6xBgIHA.360@xxxxxxxxxxxxxxxxxxxxxx>
<e#dR$6BgIHA.5204@xxxxxxxxxxxxxxxxxxxxxx>
<1EBE0EBA-BE24-4279-8EE1-E956951CA9BD@xxxxxxxxxxxxx>
<Ye9loRmgIHA.5204@xxxxxxxxxxxxxxxxxxxxxx>
<EC0BB594-5370-426E-BC34-17CE4039A687@xxxxxxxxxxxxx>
<9WyXF2ygIHA.5928@xxxxxxxxxxxxxxxxxxxxxx>
<84902299-D559-4E48-97EB-54B72D3DE9FB@xxxxxxxxxxxxx>
<SKg5Yt#hIHA.6264@xxxxxxxxxxxxxxxxxxxxxx>
<85E3F88C-0498-416D-BCE8-A25C04D24139@xxxxxxxxxxxxx>
<9tk6vTKiIHA.1500@xxxxxxxxxxxxxxxxxxxxxx>
<7120AE70-92F8-4739-AF76-2FD5A634BB29@xxxxxxxxxxxxx>
<odiLnCmjIHA.360@xxxxxxxxxxxxxxxxxxxxxx>
| Subject: RE: RWW not accessible over web
| Date: Mon, 21 Apr 2008 17:49:05 -0700
| Lines: 326
| Message-ID: <24E6C8ED-FCCA-474C-80B1-B4F794160270@xxxxxxxxxxxxx>
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="Utf-8"
| Content-Transfer-Encoding: 7bit
| X-Newsreader: Microsoft CDO for Windows 2000
| Content-Class: urn:content-classes:message
| Importance: normal
| Priority: normal
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.2992
| Newsgroups: microsoft.public.windows.server.sbs
| Path: TK2MSFTNGHUB02.phx.gbl
| Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:104256
| NNTP-Posting-Host: tk2msftibfm01.phx.gbl 10.40.244.149
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Terence,
|
| A new twist. I added remote access for VPNove CEICW and now cannot access
| RWW. I get following error response:
|
| Network Access Message: The page cannot be displayed
|
| Technical Information (for Support personnel)
| Error Code: 502 Proxy Error. Connection refused(10061)
| IP Address: 71.239.100.237
| Date: 4/22/2008 12:34:20 AM
| Server: long2003.LongSOHO.local
| Source: proxy
|
| Could adding VPN remote access cause this?
|
| Help & thanks
|
|
|
| --
| John L
|
|
| "Terence Liu [MSFT]" wrote:
|
| > Hello John,
| >
| > Thank you for your update.
| >
| > Thanks again for your praise letter.
| >
| > I want to confirm that: Can the client access Internet web sites when
you
| > use SBS Internet Users in the access rule?
| >
| > I think this is a user group issue. When we create domain user accounts
| > thru Add User Wizard, the user accounts will add to the SBS Internet
Users
| > group. Then, logon client computer with this new user account, then the
| > client could access Internet.
| >
| > Therefore, please check the user account which you logon problematic
client
| > computer, to ensure the user is member of Internet Users group:
| >
| > 1. Open Server Management console on SBS, locate on Security Groups
node.
| > 2. Double click Internet Users in right pane
| > 3. Select Members tab, ensure the domain user account in the list. If
not,
| > please add it in.
| > 4. Click OK.
| >
| > If we cannot resolve the issue after we perform the above steps, please
| > help me collect some information for further investigation:
| >
| > 1. Please help to gather the ISA Info:
| >
| > 1) Download the file from the following URL:
| >
| > http://www.isatools.org/tools/isainfo.zip
| >
| > 2) Extract all files to a folder on ISA server.
| >
| > 3) Double click Isainfo.js. This will generate 2 files
| > ISAInfo2004-<computer-name>.log and ISAInfo2004-<computer-name>.xml in
the
| > current folder.
| >
| > 4) Please send these files to me at v-terliu@xxxxxxxxxxxxx
| >
| > 2. Please also help to gather the ISA logs:
| >
| > 1) Schedule a down time.
| >
| > 2) Open ISA 2004 management console.
| >
| > 3) Expand the server node and highlight 'Monitoring'.
| >
| > 4) In the right pane, switch to the 'Logging' tab, make sure the 'Task
| > Pane' is showed there.
| >
| > 5) In the 'Task Pane', click 'Configure Firewall Logging' under
'Logging
| > Tasks', and then switch the 'log storage format' from 'MSDE database'
| > (default) to 'File'.
| >
| > 6) Switch to the 'Fields' tab, click 'Select All', and then click OK.
| >
| > 7) In the 'Task Pane', click 'Configure Web Proxy Logging' under
'Logging
| > Tasks', and then switch the 'log storage format' from 'MSDE database'
| > (default) to 'File'.
| >
| > 8) Switch to the 'Fields' tab, click 'Select All', and then click OK.
| >
| > 9) Click 'Apply' to save changes and update the configuration.
| >
| > 10) Temporarily disable the Firewall service. To do that, please click
| > Monitoring | Services tab, and then right click 'Microsoft Firewall' to
| > choose 'Stop'.
| >
| > 11) Clear the current existing W3C logs. To do that, go to the log
saving
| > directory and clean any existing .W3C logs. By default, the logs will
be
| > saved to 'C:\Program Files\Microsoft ISA Server\ISALogs'. (Some MDF may
not
| > be able to deleted, that's normal.) You may backup them first and
then
| > delete them.
| >
| > 12) Go back to the ISA 2004 management console, and then Start the
stopped
| > 'Microsoft Firewall' service.
| >
| > 13) Reproduce the problem, stop the service, and then gather the
resulting
| > W3C files to me for analysis.
| >
| > 14) Please also let me know the IP address of the testing clients so
that I
| > can filter the data.
| >
| > I hope these steps will give you some help.
| >
| > Thanks and have a nice day!
| >
| > Best regards,
| >
| > Terence Liu(MSFT)
| >
| > Microsoft CSS Online Newsgroup Support
| >
| > Get Secure! - www.microsoft.com/security
| >
| > =====================================================
| > This newsgroup only focuses on SBS technical issues. If you have issues
| > regarding other Microsoft products, you'd better post in the
corresponding
| > newsgroups so that they can be resolved in an efficient and timely
manner.
| > You can locate the newsgroup here:
| > http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
| >
| > When opening a new thread via the web interface, we recommend you check
the
| > "Notify me of replies" box to receive e-mail notifications when there
are
| > any updates in your thread. When responding to posts via your
newsreader,
| > please "Reply to Group" so that others may learn and benefit from your
| > issue.
| >
| > Microsoft engineers can only focus on one issue per thread. Although we
| > provide other information for your reference, we recommend you post
| > different incidents in different threads to keep the thread clean. In
doing
| > so, it will ensure your issues are resolved in a timely manner.
| >
| > For urgent issues, you may want to contact Microsoft CSS directly.
Please
| > check http://support.microsoft.com for regional support phone numbers.
| >
| > Any input or comments in this thread are highly appreciated.
| > =====================================================
| >
| > This posting is provided "AS IS" with no warranties, and confers no
rights.
| >
| > --------------------
| > | Thread-Topic: RWW not accessible over web
| > | thread-index: AciNwEzL7S/53XzRTlGHUzXxnAWcaw==
| > | X-WBNR-Posting-Host: 207.46.192.207
| > | From: =?Utf-8?B?Sm9obiBM?= <JohnL@xxxxxxxxxxxxxxxxxxxxxxxxx>
| > | References: <#qxb62veIHA.4744@xxxxxxxxxxxxxxxxxxxx>
| > <6Lqo1wQfIHA.4200@xxxxxxxxxxxxxxxxxxxxxx>
| > <KNDS6xBgIHA.360@xxxxxxxxxxxxxxxxxxxxxx>
| > <e#dR$6BgIHA.5204@xxxxxxxxxxxxxxxxxxxxxx>
| > <1EBE0EBA-BE24-4279-8EE1-E956951CA9BD@xxxxxxxxxxxxx>
| > <Ye9loRmgIHA.5204@xxxxxxxxxxxxxxxxxxxxxx>
| > <EC0BB594-5370-426E-BC34-17CE4039A687@xxxxxxxxxxxxx>
| > <9WyXF2ygIHA.5928@xxxxxxxxxxxxxxxxxxxxxx>
| > <84902299-D559-4E48-97EB-54B72D3DE9FB@xxxxxxxxxxxxx>
| > <SKg5Yt#hIHA.6264@xxxxxxxxxxxxxxxxxxxxxx>
| > <85E3F88C-0498-416D-BCE8-A25C04D24139@xxxxxxxxxxxxx>
| > <9tk6vTKiIHA.1500@xxxxxxxxxxxxxxxxxxxxxx>
| > | Subject: RE: RWW not accessible over web
| > | Date: Mon, 24 Mar 2008 08:04:04 -0700
| > | Lines: 314
| > | Message-ID: <7120AE70-92F8-4739-AF76-2FD5A634BB29@xxxxxxxxxxxxx>
| > | MIME-Version: 1.0
| > | Content-Type: text/plain;
| > | charset="Utf-8"
| > | Content-Transfer-Encoding: 7bit
| > | X-Newsreader: Microsoft CDO for Windows 2000
| > | Content-Class: urn:content-classes:message
| > | Importance: normal
| > | Priority: normal
| > | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.2992
| > | Newsgroups: microsoft.public.windows.server.sbs
| > | Path: TK2MSFTNGHUB02.phx.gbl
| > | Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:99646
| > | NNTP-Posting-Host: tk2msftibfm01.phx.gbl 10.40.244.149
| > | X-Tomcat-NG: microsoft.public.windows.server.sbs
| > |
| > | Terence,
| > |
| > | I have all users enabled for internal to internet access. I applied
your
| > | suggestins and they did not work for SBS internet usrs. I have so
much
| > form
| > | you, please resend what tools and captures you want to to take and
send
| > to
| > | you.
| > |
| > | Thx
| > | --
| > | John L
| > |
| > |
| > | "Terence Liu [MSFT]" wrote:
| > |
| > | > Hello John,
| > | >
| > | > Thank you for your update.
| > | >
| > | > I'm glad we find the root cause of the ping issue. By default, the
ISA
| > | > server 2004 will block anonymous Internet access from internal
clients.
| > | > Only the domain users could access Internet. We can resolve the
issue
| > by
| > | > changing the "SBS Internet Users to "All Users", I think the root
cause
| > of
| > | > the ping issue is the internal clients unable to provide user
| > | > authentication to ISA server 2004. So I suggest you check the
| > problematic
| > | > client computers thru the following steps:
| > | >
| > | > 1. Ensure the client computer had joined SBS domain, and logon use
the
| > | > domain user account.
| > | >
| > | > 2. Ensure the client computer had installed ISA server 2004
firewall
| > | > client. The ISA firewall client could help client computer to
provide
| > user
| > | > authentication to ISA server 2004. On each problematic workstation,
| > please
| > | > access \\SBSServerName\mspclnt\, then run setup.exe to install ISA
| > firewall
| > | > client on workstation.
| > | >
| > | > Then, the ISA firewall client will provide workstation current
logon
| > | > username and password to ISA server when you ping the Internet.
After
| > the
| > | > user authentication passed, the ping traffic will be allowed to go
| > through
| > | > ISA server.
| > | >
| > | > Of course, if you like, you can live with it, and use the "All
Users"
| > | > workaround.
| > | >
| > | > I hope these steps will give you some help.
| > | >
| > | > Thanks and have a nice day!
| > | >
| > | > Best regards,
| > | >
| > | > Terence Liu(MSFT)
| > | >
| > | > Microsoft CSS Online Newsgroup Support
| > | >
| > | > Get Secure! - www.microsoft.com/security
| > | >
| > | > =====================================================
| > | > This newsgroup only focuses on SBS technical issues. If you have
issues
| > | > regarding other Microsoft products, you'd better post in the
| > corresponding
| > | > newsgroups so that they can be resolved in an efficient and timely
| > manner.
| > | > You can locate the newsgroup here:
| > | > http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
| > | >
| > | > When opening a new thread via the web interface, we recommend you
check
| > the
| > | > "Notify me of replies" box to receive e-mail notifications when
there
| > are
| > | > any updates in your thread. When responding to posts via your
| > newsreader,
| > | > please "Reply to Group" so that others may learn and benefit from
your
| > | > issue.
| > | >
| > | > Microsoft engineers can only focus on one issue per thread.
Although we
| > | > provide other information for your reference, we recommend you post
| > | > different incidents in different threads to keep the thread clean.
In
| > doing
| > | > so, it will ensure your issues are resolved in a timely manner.
| > | >
| > | > For urgent issues, you may want to contact Microsoft CSS directly.
| > Please
| > | > check http://support.microsoft.com for regional support phone
numbers.
| > | >
| > | > Any input or comments in this thread are highly appreciated.
| > | > =====================================================
| > | >
| > | > This posting is provided "AS IS" with no warranties, and confers no
| > rights.
| > | >
| > | > --------------------
| > | > | Thread-Topic: RWW not accessible over web
| > | > | thread-index: AciITdN3obSUaqWnRuqMSSF22+MK4Q==
| > | > | X-WBNR-Posting-Host: 207.46.193.207
| > | > | From: =?Utf-8?B?Sm9obiBM?= <JohnL@xxxxxxxxxxxxxxxxxxxxxxxxx>
| > | > | References: <#qxb62veIHA.4744@xxxxxxxxxxxxxxxxxxxx>
| > | > <6Lqo1wQfIHA.4200@xxxxxxxxxxxxxxxxxxxxxx>
| > | > <KNDS6xBgIHA.360@xxxxxxxxxxxxxxxxxxxxxx>
| > | > <e#dR$6BgIHA.5204@xxxxxxxxxxxxxxxxxxxxxx>
| > | > <1EBE0EBA-BE24-4279-8EE1-E956951CA9BD@xxxxxxxxxxxxx>
| > | > <Ye9loRmgIHA.5204@xxxxxxxxxxxxxxxxxxxxxx>
| > | > <EC0BB594-5370-426E-BC34-17CE4039A687@xxxxxxxxxxxxx>
| > | > <9WyXF2ygIHA.5928@xxxxxxxxxxxxxxxxxxxxxx>
| > | > <84902299-D559-4E48-97EB-54B72D3DE9FB@xxxxxxxxxxxxx>
| > | > <SKg5Yt#hIHA.6264@xxxxxxxxxxxxxxxxxxxxxx>
| > | > | Subject: RE: RWW not accessible over web
| > | > | Date: Mon, 17 Mar 2008 09:42:02 -0700
| > | > | Lines: 310
| > | > | Message-ID: <85E3F88C-0498-416D-BCE8-A25C04D24139@xxxxxxxxxxxxx>
| > | > | MIME-Version: 1.0
| > | > | Content-Type: text/plain;
| > | > | charset="Utf-8"
| > | > | Content-Transfer-Encoding: 7bit
| > | > | X-Newsreader: Microsoft CDO for Windows 2000
| > | > | Content-Class: urn:content-classes:message
| > | > | Importance: normal
| > | > | Priority: normal
| > | > | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.2992
| > | > | Newsgroups: microsoft.public.windows.server.sbs
| > | > | Path: TK2MSFTNGHUB02.phx.gbl
| > | > | Xref: TK2MSFTNGHUB02.phx.gbl
microsoft.public.windows.server.sbs:98666
| > | > | NNTP-Posting-Host: tk2msftibfm01.phx.gbl 10.40.244.149
| > | > | X-Tomcat-NG: microsoft.public.windows.server.sbs
| > | > |
| > | > | Terence,
| > | > |
| > | > | Moving to top did not work but making it "all users" did. I now
can
| > ping
| > | > | externally from all ISA clients. Thanks for sticking with me.
| > | > | --
| > | > | John L
| > | > |
| > | > |
|
.
- Follow-Ups:
- RE: RWW not accessible over web
- From: John L
- RE: RWW not accessible over web
- References:
- RE: RWW not accessible over web
- From: John L
- RE: RWW not accessible over web
- Prev by Date: Bulova Men's Black Tortoise Shell Leather Watch #97B13 - Replica Watch Fake
- Next by Date: RE: SBS 2003 Fax Service not working
- Previous by thread: RE: RWW not accessible over web
- Next by thread: RE: RWW not accessible over web
- Index(es):
Relevant Pages
|
