Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

ISA 2004 Disables DHCP

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> ISA 2004 SBS >> ISA 2004 Disables DHCP Page: [1]
Login
Message << Older Topic   Newer Topic >>
ISA 2004 Disables DHCP - 10.Sep.2007 9:51:40 AM   
gbotero

 

Posts: 3
Joined: 10.Sep.2007
Status: offline 		SBS 2003 SP1 with ISA 2004 SP2.  I created a rule to block "forbidden sites" using the Domain Name Sets as the destination to block.  The rule works great but it breaks DHCP.  Restarting the DHCP service does not help.  It shows as started, however, no IPs are assigned.  Any thoughts?
Post #: 1
RE: ISA 2004 Disables DHCP - 10.Sep.2007 12:27:10 PM   
Rotorblade

 

Posts: 976
Joined: 27.Feb.2007
Status: offline 		Hi,

Did you create a specific Domain Name set for the forbidden sites and only apply the blocking rule to the name set? If you applied the deny rule to all that is listed in your Domain Name set; then that could be the reason why. Rule order is another. Where did you place the rule (order) in your Firewall policy? Any explicit deny blocking rules need to be placed below any server specific allow rules and above any non-specific Internet allow access rules.  

HTH
RB

(in reply to gbotero)
Post #: 2
RE: ISA 2004 Disables DHCP - 10.Sep.2007 2:49:46 PM   
gbotero

 

Posts: 3
Joined: 10.Sep.2007
Status: offline 		Thanks for the response HTH.  I did create a specific domain name set for the forbidden sites.  The rule actually works fine but disables DHCP at the server level.

Gus

(in reply to gbotero)
Post #: 3
RE: ISA 2004 Disables DHCP - 11.Sep.2007 5:19:01 PM   
elmajdal

 

Posts: 5074
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline 		Hi,

where is your DHCP Server located ?

_____________________________

Tarek Majdalani

MS Forefront Edge Security MVP
Website : http://www.elmajdal.net/ISAServer
New Section : http://www.elmajdal.net/Win2k8

(in reply to gbotero)
Post #: 4
RE: ISA 2004 Disables DHCP - 11.Sep.2007 5:34:13 PM   
gbotero

 

Posts: 3
Joined: 10.Sep.2007
Status: offline 		Same server.  SBS2003

(in reply to gbotero)
Post #: 5
RE: ISA 2004 Disables DHCP - 11.Sep.2007 5:43:48 PM   
elmajdal

 

Posts: 5074
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline 		Hi,

I Never worked with SBS Before, so i dont know anything about their System Policy.

but have u checked this : http://www.microsoft.com/technet/isa/2004/plan/isaondhcpserver.mspx

_____________________________

Tarek Majdalani

MS Forefront Edge Security MVP
Website : http://www.elmajdal.net/ISAServer
New Section : http://www.elmajdal.net/Win2k8

(in reply to gbotero)
Post #: 6
RE: ISA 2004 Disables DHCP - 11.Oct.2007 7:41:45 AM   
malmensa

 

Posts: 1
Joined: 11.Oct.2007
Status: offline 		Seen this here as well, replicated on several servers, found it can be even more bizarre than your scenario, and eventually figured out a simple fix. 
The more bizarre bit is that an *allow* rule fires off the same behaviour!
The fix is to move your URL blocking rule down a bit. Anywhere below the “SBS Protected Networks Access Rule" will work as logic would dictate.
TOM S, if you read this, can you check that someone in Redmond is onto this?  It’s replicateable, and has gotta be a bug.  I suspect it’s causing stress all over..  If you want screen shots or access to a server with this problem, zap me an email.
Mal Osborne

(in reply to gbotero)
Post #: 7

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> ISA 2004 SBS >> ISA 2004 Disables DHCP Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts