|
antandrades -> Secure Channel Problem (14.Jul.2008 10:46:18 AM)
|
Hi, I have a ISA 2006 installation in a DMZ. The server communicates with a DC on the LAN through a Checkpoint firewall with all the standard ports configured (53, 88, 123, 135, 389, 3268, 1025, 1026).
The problem we have is that from time to time the Secure Channel seems to break and as a result doesn't authenticate domain users. I have made the registry tweaks to RSS, TCPA and TCPChimney but I still get the loss of communication between the ISA box and the DC over the secure channel. It's intermittent, and as easily as it goes, it comes back. We have other ISA servers in different DMZ's and LAN sections, with the same configuration that do not have this problem.
Plus when I put the server back on the LAN, the problem doesn't occur.
Has anyone else experienced anything similar and troubleshot it?
The Checkpoint is performing NAT also.
Thanks for any feedback.
|
|
|
|