Welcome to ISAserver.org

ISA listens on Port 8080 but program uses Port 80

Users viewing this topic: none

Logged in as: Guest

Printable Version

All Forums >> [ISA Server 2004 General ] >> General >> ISA listens on Port 8080 but program uses Port 80

Page: [1]

Message

<< Older Topic Newer Topic >>

ISA listens on Port 8080 but program uses Port 80 - 25.May2005 4:49:00 AM

kncowans

Posts: 52
Joined: 22.Apr.2005
From: Doncaster
Status: offline

Hello all

It seems as though I fix one thing and something else takes its place "[Frown]"

ISA 2004 Std is configured to listen on Port 8080 however a Server application that we use is hard coded to use Port 80.

Is there anyway to have ISA also handle requests received on Port 80?

Sorry if this is a simple question but I am just getting used to ISA.

Thanks in advance

Kevin

Post #: 1

Featured Links*

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 5:55:00 AM

tshinder

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline

Hi Kevin,

What do you mean by "the program is hard coded to 'listen' on 80"?

Thanks!
Tom

(in reply to kncowans)

Post #: 2

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 6:00:00 AM

kncowans

Posts: 52
Joined: 22.Apr.2005
From: Doncaster
Status: offline

Hello Tom

Thanks for the reply.

When an incoming Email is received by the Server, MailWarden initiates a connection to an Internet Realtime Spam Checking Service by HTTP (on Port 80) and checks whether or not the Email is Spam or not.

This is where the problem lies.

The Email is coming in fine, however, ISA is denying access to the required site.

The logs show that this connection is being denied, however, no Rule is being shown as the reason why.

The only thing I can think of is that ISA listens for requests on Port 8080 and MailWarden uses Port 80 (which is not configurable).

Is there an easy and quick way to change ISA over to Port 80?

ISA also broadcasts Automatic Discovery information on Port 80. Would I need to change the Port here too to avoid conflicts?

Also, would I need to change the settings for the Firewall Client installed on my Internal Network.

Thanks in advance

Kevin

(in reply to kncowans)

Post #: 3

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 8:03:00 AM

theRob

Posts: 103
Joined: 31.Aug.2003
From: The Netherlands
Status: offline

Hi Kevin,

Do you have MailWarden installed on the isa server?

Regards,

Rob

(in reply to kncowans)

Post #: 4

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 8:13:00 AM

kncowans

Posts: 52
Joined: 22.Apr.2005
From: Doncaster
Status: offline

Hello Rob

Thanks for the reply.

No, MailWarden is installed on a separate Server.

I have pasted a single line from the logs to this post so you can see exactly what I am getting.

Apologies for the length of the following line.

--

0.0.0.0 Mozilla/4.0 (compatible; Win32; Commtouch Http Client) No Proxy PROXY TCP - - - - - - 0 1 2245 226 12202 The ISA Server denied the specified Uniform Resource Locator (URL). 0x0 0x200 Web Proxy Filter 25/05/2005 13:03:43 216.163.188.50 80 Denied Connection 172.16.255.9 anonymous POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest

--

Thanks in advance

Kevin

(in reply to kncowans)

Post #: 5

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 9:06:00 AM

theRob

Posts: 103
Joined: 31.Aug.2003
From: The Netherlands
Status: offline

Ok,
how are your firewall rules for http, dns etc.

Is the server is securenat client?

(in reply to kncowans)

Post #: 6

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 9:22:00 AM

kncowans

Posts: 52
Joined: 22.Apr.2005
From: Doncaster
Status: offline

Hello Rob

The Server has no Firewall Client installed and has the Default Gateway set to the ISA machine.

DNS Rule at top of list to allow access to our providers DNS Servers.

Two Rules for MailWarden, one to allow Outgoing SMTP from MailWarden and the other is a MailServer Publishing Rule to route Incoming Email to MailWarden.

The Allow All Rule to allow Internet Access from anywhere on our Internal Network to the External.

Thanks in advance

Kevin

(in reply to kncowans)

Post #: 7

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 10:33:00 AM

thejun

Posts: 109
Joined: 21.Jan.2002
Status: offline

I believe that is why they invented the firewall client, for apps with no proxy settings. Have you tried installing it?

(in reply to kncowans)

Post #: 8

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 10:55:00 AM

kncowans

Posts: 52
Joined: 22.Apr.2005
From: Doncaster
Status: offline

Hello

I installed the Firewall Client but the connections are still be denied by ISA.

Thanks in advance

Kevin

(in reply to kncowans)

Post #: 9

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 11:20:00 AM

thejun

Posts: 109
Joined: 21.Jan.2002
Status: offline

set an allow all rule from the ip that that app is running on, then try it a couple times and post the logs.

(in reply to kncowans)

Post #: 10

RE: ISA listens on Port 8080 but program uses Port 80 - 25.May2005 11:51:00 AM

kncowans

Posts: 52
Joined: 22.Apr.2005
From: Doncaster
Status: offline

Hello

Thanks for the reply.

I have left work for the day now, thank god, it has been one of those weeks so far.

Which logs do you want me to Post?

Thanks in advance

Kevin

[ May 25, 2005, 11:52 AM: Message edited by: Kevin Cowans ]

(in reply to kncowans)

Post #: 11

RE: ISA listens on Port 8080 but program uses Port 80 - 31.May2005 2:23:00 PM

kncowans

Posts: 52
Joined: 22.Apr.2005
From: Doncaster
Status: offline

Hello again

I have done what you suggested and the logs contain the same as what I previosly posted.

--

0.0.0.0 Mozilla/4.0 (compatible; Win32; Commtouch Http Client) No Proxy PROXY TCP - - - - - - 0 1 2245 226 12202 The ISA Server denied the specified Uniform Resource Locator (URL). 0x0 0x200 Web Proxy Filter 25/05/2005 13:03:43 216.163.188.50 80 Denied Connection 172.16.255.9 anonymous POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest

--

Surely if something is being shown as denied then an Access Rule can be created to allow it or am I wrong.

Thanks in advance

Kevin

(in reply to kncowans)

Post #: 12

RE: ISA listens on Port 8080 but program uses Port 80 - 1.Jun.2005 8:27:00 AM

Guest

HI,

What web browser port settings do your user's have on their workstations and are there are other systems that can access the Internet successfully via port 8080?

Depending on the answer to the above question you could try one of the two things, the first is probably the safer out of the two

1) Create a user defined HTTP Protocol (e.g. HTTP-KC) with port parametes set to 80. Also create a Server/Workstation with the IP address of Server that is getting Access Denied.

Then setup a new Firewall rule using the above parameters going to your external source.

2) ONLY DO THIS IF ALL YOUR HTTP TRAFFIC is to use the same port. Amend your proxy settings for the internal network so that port 80 is used instead of 8080. This is done by going to configuration, networks and properties of the internal network and then the Web Proxy tab. AMENDING this will change the port for the HTTP protocol for anything that goes through the FW using HTTP

(in reply to kncowans)

Post #: 13

RE: ISA listens on Port 8080 but program uses Port 80 - 5.Jun.2005 1:22:00 PM

Bio

Posts: 77
Joined: 28.Nov.2002
Status: offline

hi Kevin,

You mentioned that you have an ALL open rule configured on your ISA BOX ... Does that rule have authentication configured ? if yes... create a HTTP rule with the ALL users group (instead of ALL authenticated group) .. place this rule above your ALL open rule.

bio..

(in reply to kncowans)

Post #: 14