• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Nothing Accessible Externally (except with VPN)

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> General >> Nothing Accessible Externally (except with VPN) Page: [1]
Login
Message << Older Topic   Newer Topic >>
Nothing Accessible Externally (except with VPN) - 15.May2006 11:41:11 PM   
sknight

 

Posts: 6
Joined: 30.Mar.2006
From: Coppell, Tx
Status: offline
This problem has been somewhat confusing.

I have an ISA Server 2004 Standard with SP2 and a domain environment. I can't get webmail, sharepoint, or ftp sites that are internally hosted to be available externally. I have setup the rules correctly (I am pretty sure). Is this a common problem that only takes a few seconds to fix?

Now, this could be several issues. 1) I don't know how to set up these servers in the DNS. Do I need to create aliases or make any special host records or anything like that? Do I need to have them in the ISA DNS too? or not? And would there be a conflict if our internal network is the same thing as our web page URL which is externall hosted? So say our web page is xyz.com from another company, and our domain name is also xyz.com. Is there a problem there?

Thanks guys. This will clear most of my issues!
Sean
Post #: 1
RE: Nothing Accessible Externally (except with VPN) - 18.May2006 2:08:37 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Sean,

Can you give a detailed explanation of one of the rules that isn't working?

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to sknight)
Post #: 2
RE: Nothing Accessible Externally (except with VPN) - 18.May2006 5:10:34 PM   
sknight

 

Posts: 6
Joined: 30.Mar.2006
From: Coppell, Tx
Status: offline
Sure (thanks for the reply)
My example rule is called "SharePoint"

Allow
HTTP Protocol
From Anywhere
Using Listener (Listening on external network with a selected IP, no SSL required (yet), integrated authentication, all users required to authenticate)
To servername (requests appear from original client, original host headers not sent)
Public Name - www.mydomainname.com/servername (was created by default, i didn't change this)(is this the address I use to access this?)
Path - /*
All Users

I'm getting 403 Server Denied the connection when requesting by http://servername.domainname.com
I get 404 when using http://www.domainname.com/servername

(in reply to tshinder)
Post #: 3
RE: Nothing Accessible Externally (except with VPN) - 19.May2006 2:19:28 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Sean,

OK, we're getting closer. Now I need to know the exact names used on the Public and To tabs.

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to sknight)
Post #: 4
RE: Nothing Accessible Externally (except with VPN) - 19.May2006 3:48:00 PM   
sknight

 

Posts: 6
Joined: 30.Mar.2006
From: Coppell, Tx
Status: offline
Haha, we are closer than you think!
Turns out, ISA was not the issue. I had the rules created beautifully.

I fixed the issue with some luck and expirimentation.
First with sharepoint, there's an option to give it an External URL. Which I gave "portal.domainname.com"
Then I had to create an Alias in ISA's DNS to match "portal" to the web server name.
And the server name had to have a host record matching it to the Internal IP (which is all I had and couldn't figure out why it didn't work)

Back to the rule:
So now, my "To" name is "portal.domainname.com" and the public name is also "portal.domainname.com"

Now, i've recreated the rule and went with all the default authentication. I am pretty sure i'll want to use SSL on our sharepoint site. But getting something externally available has been a huge hurdle for me and the previous admin.

So where would I get the information about the DNS stuff necessary? Or should it have been a no-brainer?

Thanks
Sean

(in reply to tshinder)
Post #: 5
RE: Nothing Accessible Externally (except with VPN) - 20.May2006 5:54:33 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Sean,

The DNS stuff is always a key part of any of my articles on Web publishing. You might want to start with the split DNS articles I've done on this site.

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to sknight)
Post #: 6
RE: Nothing Accessible Externally (except with VPN) - 21.May2006 7:14:45 AM   
sknight

 

Posts: 6
Joined: 30.Mar.2006
From: Coppell, Tx
Status: offline
Thank you Tom

I already use this site to keep up to date with ISA, so I will certainly re-read those articles more closely.

FYI, made the same change to webmail and it works now. The bosses will be happy :)

Sean

(in reply to tshinder)
Post #: 7
RE: Nothing Accessible Externally (except with VPN) - 21.May2006 5:52:57 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Sean,

That's great! Good to hear that everything is working and thanks for the follow up.l

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to sknight)
Post #: 8

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> General >> Nothing Accessible Externally (except with VPN) Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts