• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

PowerGrade HTTP Issue

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> General >> PowerGrade HTTP Issue Page: [1]
Login
Message << Older Topic   Newer Topic >>
PowerGrade HTTP Issue - 24.Aug.2006 9:44:22 PM   
KyleKartan

 

Posts: 59
Joined: 21.Oct.2003
From: New Hampshire
Status: offline
Hi,

I am using PowerGrade with PowerSchool and am having issues passing the traffic through our ISA 2004 Firewall. It communicates using HTTP, but somewhere in the communications, it fails. I have been able to connect to it outside the firewall just fine. I have also fully opened up all protocols out to this server but with no avail, I have also disabled just about everything in the HTTP Filter properties for the rule, also didn't work. The clients all have the Firewall client installed.

At this point I am stumped as to what is stopping the communication. Below are two packet captures (the data may be incomplete,if you need more let me know), the first is the unsuccessful, the second sucessful (not behind the ISA)

Much thanks for any help.

UNSUCCESSFUL
[/size]
[size=1]1 KINGSWOOD cert7.powerschool... 66 14:58:15.323394 HTTP Src= 1927,Dst= 80,....S.,S= [/size]
[size=1]2 cert7.powerschool... KINGSWOOD 66 14:58:15.325627 HTTP Src= 80,Dst= 1927,.A..S.,S= [/size]
[size=1]3 KINGSWOOD cert7.powerschool... 64 14:58:15.325782 HTTP Src= 1927,Dst= 80,.A....,S= [/size]
[size=1]4 KINGSWOOD cert7.powerschool... 378 14:58:15.327130 HTTP C PORT=1927 POST /*pg3/get.version [/size]
[size=1]5 cert7.powerschool... KINGSWOOD 108 14:58:15.328786 HTTP R PORT=1927 HTML Data [/size]
[size=1]6 KINGSWOOD cert7.powerschool... 260 14:58:15.329087 HTTP C PORT=1927 ....Objects!........... . [/size]
[size=1]7 cert7.powerschool... KINGSWOOD 64 14:58:15.564125 HTTP Src= 80,Dst= 1927,.A....,S= [/size]
[size=1]8 cert7.powerschool... KINGSWOOD 480 14:58:15.586242 HTTP R PORT=1927 HTML Data [/size]
[size=1]9 cert7.powerschool... KINGSWOOD 64 14:58:15.586666 HTTP Src= 80,Dst= 1927,.A...F,S= [/size]
[size=1]10 KINGSWOOD cert7.powerschool... 64 14:58:15.586743 HTTP Src= 1927,Dst= 80,.A....,S= [/size]
[size=1]11 KINGSWOOD cert7.powerschool... 64 14:58:15.587009 HTTP Src= 1927,Dst= 80,.A...F,S= [/size]
[size=1]12 cert7.powerschool... KINGSWOOD 64 14:58:15.588066 HTTP Src= 80,Dst= 1927,.A....,S=


SUCCESSFUL
1 IP-65.175.162.173 cert7.powerschool... 66 15:13:48.736942 H... Src= 1983,Dst= 80,....S.,S=3645419920,L= [/size]
[size=1]2 cert7.powerschool... IP-65.175.162.173 64 15:13:48.851320 H... Src= 80,Dst= 1983,.A..S.,S=1502030676,L= [/size]
[size=1]3 IP-65.175.162.173 cert7.powerschool... 64 15:13:48.851564 H... Src= 1983,Dst= 80,.A....,S=3645419921,L= [/size]
[size=1]4 IP-65.175.162.173 cert7.powerschool... 378 15:13:48.870903 H... C PORT=1983 POST /*pg3/get.version [/size]
[size=1]5 cert7.powerschool... IP-65.175.162.173 64 15:13:48.987105 H... Src= 80,Dst= 1983,.A....,S=1502030677,L= [/size]
[size=1]6 cert7.powerschool... IP-65.175.162.173 383 15:13:49.011731 H... R PORT=1983 HTML Data [/size]
[size=1]7 cert7.powerschool... IP-65.175.162.173 64 15:13:49.012297 H... Src= 80,Dst= 1983,.A...F,S=1502031002,L= [/size]
[size=1]8 IP-65.175.162.173 cert7.powerschool... 64 15:13:49.012367 H... Src= 1983,Dst= 80,.A....,S=3645420241,L= [/size]
[size=1]9 IP-65.175.162.173 cert7.powerschool... 64 15:13:49.101454 H... Src= 1983,Dst= 80,.A...F,S=3645420241,L= [/size]
[size=1]10 IP-65.175.162.173 cert7.powerschool... 66 15:13:49.102694 H... Src= 1984,Dst= 80,....S.,S=2185879811,L= [/size]
[size=1]11 cert7.powerschool... IP-65.175.162.173 64 15:13:49.279194 H... Src= 80,Dst= 1984,.A..S.,S=3523595684,L= [/size]
[size=1]12 IP-65.175.162.173 cert7.powerschool... 64 15:13:49.279454 H... Src= 1984,Dst= 80,.A....,S=2185879812,L= [/size]
[size=1]13 cert7.powerschool... IP-65.175.162.173 64 15:13:49.283603 H... Src= 80,Dst= 1983,.A....,S=1502031003,L= [/size]
[size=1]14 IP-65.175.162.173 cert7.powerschool... 714 15:13:49.384608 H... C PORT=1984 POST /*pg3/get.version [/size]
[size=1]15 cert7.powerschool... IP-65.175.162.173 64 15:13:49.574626 H... Src= 80,Dst= 1984,.A....,S=3523595685,L= [/size]
[size=1]16 cert7.powerschool... IP-65.175.162.173 83 15:13:49.707990 H... R PORT=1984 HTML Data [/size]
[size=1]17 IP-65.175.162.173 cert7.powerschool... 260 15:13:49.711046 H... C PORT=1984 ....Objects!........... .p... [/size]
[size=1]18 cert7.powerschool... IP-65.175.162.173 64 15:13:49.818880 H... Src= 80,Dst= 1984,.A....,S=3523595710,L= [/size]
[size=1]19 cert7.powerschool... IP-65.175.162.173 254 15:13:49.907901 H... R PORT=1984 HTML Data [/size]
[size=1]20 cert7.powerschool... IP-65.175.162.173 180 15:13:49.912488 H... R PORT=1984 HTML Data [/size]
[size=1]21 IP-65.175.162.173 cert7.powerschool... 64 15:13:49.912571 H... Src= 1984,Dst= 80,.A....,S=2185880670,L= [/size]
[size=1]22 IP-65.175.162.173 cert7.powerschool... 64 15:13:49.913081 H... Src= 1984,Dst= 80,.A...F,S=2185880670,L=[/size]
[size=1] 23 cert7.powerschool... IP-65.175.162.173 64 15:13:50.021125 H... Src= 80,Dst= 1984,.A....,S=3523596029,L= [/size]
[size=1]24 IP-65.175.162.173 cert7.powerschool... 66 15:13:50.321802 H... Src= 1985,Dst= 80,....S.,S=1770878400,L= [/size]
[size=1]25 cert7.powerschool... IP-65.175.162.173 64 15:13:50.429890 H... Src= 80,Dst= 1985,.A..S.,S=1379469690,L= [/size]
[size=1]26 IP-65.175.162.173 cert7.powerschool... 64 15:13:50.430154 H... Src= 1985,Dst= 80,.A....,S=1770878401,L=[/size]
[size=1] 27 IP-65.175.162.173 cert7.powerschool... 718 15:13:50.525310 H... C PORT=1985 POST /*pg3/get.date.time [/size]
[size=1]28 cert7.powerschool... IP-65.175.162.173 64 15:13:50.634380 H... Src= 80,Dst= 1985,.A....,S=1379469691,L= [/size]
[size=1]29 cert7.powerschool... IP-65.175.162.173 83 15:13:50.706135 H... R PORT=1985 HTML Data [/size]
[size=1]30 IP-65.175.162.173 cert7.powerschool... 262 15:13:50.706719 H... C PORT=1985 ....Objects!...........".p......... [/size]
[size=1]31 cert7.powerschool... IP-65.175.162.173 64 15:13:50.814464 H... Src= 80,Dst= 1985,.A....,S=1379469716,L= [/size]
[size=1]32 cert7.powerschool... IP-65.175.162.173 254 15:13:50.820951 H... R PORT=1985 HTML Data [/size]
[size=1]33 cert7.powerschool... IP-65.175.162.173 236 15:13:50.824954 H... R PORT=1985 HTML Data [/size]
[size=1]34 IP-65.175.162.173 cert7.powerschool... 64 15:13:50.825057 H... Src= 1985,Dst= 80,.A....,S=1770879265,L= [/size]
[size=1]35 IP-65.175.162.173 cert7.powerschool... 64 15:13:50.825278 H... Src= 1985,Dst= 80,.A...F,S=1770879265,L= [/size]
[size=1]36 IP-65.175.162.173 cert7.powerschool... 66 15:13:50.838682 H... Src= 1986,Dst= 80,....S.,S=2492862001,L= [/size]
[size=1]37 cert7.powerschool... IP-65.175.162.173 64 15:13:50.946383 H... Src= 80,Dst= 1985,.A....,S=1379470091,L= [/size]
[size=1]38 cert7.powerschool... IP-65.175.162.173 64 15:13:50.950807 H... Src= 80,Dst= 1986,.A..S.,S= 298644435,L= [/size]
[size=1]39 IP-65.175.162.173 cert7.powerschool... 64 15:13:50.951083 H... Src= 1986,Dst= 80,.A....,S=2492862002,L=[/size]
[size=1]40 IP-65.175.162.173 cert7.powerschool... 724 15:13:50.978327 H... C PORT=1986 POST /*pg3/get.school.names [/size]
[size=1]41 cert7.powerschool... IP-65.175.162.173 64 15:13:51.088931 H... Src= 80,Dst= 1986,.A....,S= 298644436,L= [/size]
[size=1]42 cert7.powerschool... IP-65.175.162.173 83 15:13:51.136443 H... R PORT=1986 HTML Data [/size]
[size=1]43 IP-65.175.162.173 cert7.powerschool... 264 15:13:51.136897 H... C PORT=1986 ....Objects!...........$.p......... [/size]
[size=1]44 cert7.powerschool... IP-65.175.162.173 64 15:13:51.243658 H... Src= 80,Dst= 1986,.A....,S= 298644461,L= [/size]
[size=1]45 cert7.powerschool... IP-65.175.162.173 254 15:13:51.256973 H... R PORT=1986 HTML Data [/size]
[size=1]46 cert7.powerschool... IP-65.175.162.173 358 15:13:51.264157 H... R PORT=1986 HTML Data [/size]
[size=1]47 IP-65.175.162.173 cert7.powerschool... 64 15:13:51.264243 H... Src= 1986,Dst= 80,.A....,S=2492862874,L= [/size]
[size=1]48 IP-65.175.162.173 cert7.powerschool... 64 15:13:51.264448 H... Src= 1986,Dst= 80,.A...F,S=2492862874,L= [/size]
[size=1]49 cert7.powerschool... IP-65.175.162.173 64 15:13:51.382855 H... Src= 80,Dst= 1986,.A....,S= 298644958,L=
Post #: 1
RE: PowerGrade HTTP Issue - 30.Aug.2006 2:49:43 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Kyle,

This doesn't happen to be a Java app, does it?

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to KyleKartan)
Post #: 2
RE: PowerGrade HTTP Issue - 30.Aug.2006 3:19:06 AM   
KyleKartan

 

Posts: 59
Joined: 21.Oct.2003
From: New Hampshire
Status: offline
I am not sure. If it is, it isn't obvious about it. I made another post in the HTTP Filtering forum as well. If I turn off the Web Proxy Filter, then it works just fine, but I would prefer to keep the filter on. It may have something to do with asterisks in the URL.

Thanks,

--Kyle

(in reply to tshinder)
Post #: 3
RE: PowerGrade HTTP Issue - 31.Aug.2006 1:55:21 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Kyle,

In the ISA Firewall's log files, turn on the "Filter Information" column. That might give you a hint regarding what filter configuration settings triggered the filter.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to KyleKartan)
Post #: 4
RE: PowerGrade HTTP Issue - 31.Aug.2006 7:28:53 PM   
mikesmith20055002

 

Posts: 20
Joined: 30.Jan.2006
Status: offline
I use a similar product from another company that uses ASP that I host for internal and external clients, I believe PowerGrade is an externally hosted product.  I would point blank ask the company exactly what ports and protocals are used, when and how they are used, and then open them up and then see what errors are produced. 
Also, are you using ISA Firewall Client on the Client machines?  That may make a difference.  You may want to figure out how well it works on the ISA server itself, if it works on the ISA Server than chances are your problem is between ISA passing traffic to and from client computers out to PowerGrade, rather than that the traffic can't get in and out of ISA.  Are the clients Macs or PC's?

(in reply to tshinder)
Post #: 5
RE: PowerGrade HTTP Issue - 7.Sep.2006 9:09:18 PM   
KyleKartan

 

Posts: 59
Joined: 21.Oct.2003
From: New Hampshire
Status: offline
Sorry for the delay in answering, hope you all are still out there :)

Tom,

I turned on the filter information and came out with this: (pardon the unformatted goodness)
(to summarize, the filter information code was 0xf00)

Original Client IP Client Agent Authenticated Client Service Server Name Referring Server Destination Host Name Transport MIME Type Object Source Source Proxy Destination Proxy Bidirectional Client Host Name Network Interface Raw IP Header Raw Payload Source Port Processing Time Bytes Sent Bytes Received Result Code HTTP Status Code Cache Information Log Time Destination IP Destination Port Protocol Action Rule Client IP Client Username Source Network Destination Network HTTP Method URL Filter Information Error Information Log Record Type
10.200.200.180    FIREWALL-BACK -  TCP -         1335 250 0 489 0x80074e24   0x0 9/1/2006 12:37:10 PM 17.112.222.247 80 HTTP (non filtered) Closed Connection Temp PowerSchool Test 10.200.200.180  High School LAN External - - - 0x0 Firewall
10.200.200.180    FIREWALL-BACK -  TCP -         1335 0 0 0 0x0   0x0 9/1/2006 12:37:10 PM 17.112.222.247 80 HTTP (non filtered) Initiated Connection Temp PowerSchool Test 10.200.200.180  High School LAN External - - - 0x0 Firewall
0.0.0.0 PowerGrade/5.1.2.0b102 (512000102) Windows 2000 5.1 No Proxy FIREWALL-BACK  firewall-front.kingswood.gwrsd TCP  Upstream - -  - - - - 0 250 489 521  401  0x4c000000 9/1/2006 12:37:10 PM 172.16.20.1 8080 http Allowed Connection Temp PowerSchool Test 10.200.200.180 anonymous High School LAN External POST [link=http://17.112.222.247/*pg3/get.version]http://17.112.222.247/*pg3/get.version[/link]  0xf00 Web Proxy Filter



To answer MikeSmith's questions:
it is hosted externally of this building, but on our own server.
I have not called and talked to Apple yet, as I am not expecting them to be of much help
I have tried with and without the Firewall Client
Clients are PCs


I guess if all else fails i'll just have to turn off the WebProxy Filter if I cannot find a way to bypass it.

Many thanks,

--Kyle

(in reply to mikesmith20055002)
Post #: 6
RE: PowerGrade HTTP Issue - 8.Sep.2006 1:22:57 AM   
mikesmith20055002

 

Posts: 20
Joined: 30.Jan.2006
Status: offline
This may be the same problem you are having

http://contribs.org/modules/pbboard/viewtopic.php?t=28709&postdays=0&postorder=asc&start=15

(in reply to KyleKartan)
Post #: 7
RE: PowerGrade HTTP Issue - 8.Sep.2006 1:28:21 PM   
KyleKartan

 

Posts: 59
Joined: 21.Oct.2003
From: New Hampshire
Status: offline
After reading the first page and what they describe, I will have to analize the packets before and after the firewall in order to see if ISA is changing the request packet.

the thing that gets me is that I've created a port 80 rule above the normal internet access that doesn't have the WebProxy filter on it, but it still wont work correctly. I've also added it to the direct access tab.

So far my alternatives are: disable the Webproxy filter (not desired) and/or change the listening port on the server (not going to happen)

Any chance for a third?

thanks again,

(in reply to mikesmith20055002)
Post #: 8
RE: PowerGrade HTTP Issue - 8.Sep.2006 3:52:06 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Kyle,

You can configure the site for Direct Access, and use the Firewall client. That why you can bypass the Web proxy filter and still have secure, authenticated outbound access.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to KyleKartan)
Post #: 9

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> General >> PowerGrade HTTP Issue Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts