• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

ISA Server and PDA Wierdness

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Misc.] >> Tom's ISA Firewall Blog Discussion >> ISA Server and PDA Wierdness Page: [1]
Login
Message << Older Topic   Newer Topic >>
ISA Server and PDA Wierdness - 29.Sep.2008 4:37:10 PM   
therealt

 

Posts: 17
Joined: 16.Apr.2003
Status: offline
Hello,

I have an ISA 2004 server and it is working beautifully with this one exception.

I added a WAP to our network because we use PDAs to run an application that requires Internet access.  The PDA's will not access the Internet no matter what I do, but if I hookup a laptop via the wireless that is on our AD domain it works like a champ.

I setup the PDAs as SecureNAT clients and pointed their gateway addresses to the ISA box.

I have a rule in the ISA server to allow HTTP/HTTPS traffic from the IP address range of the PDAs and have set it to All Users.  I even put the rule at the top and them removed all other rules on the ISA server and still nothing.

What am I missing?

Thanks.
Post #: 1
RE: ISA Server and PDA Wierdness - 30.Sep.2008 9:02:12 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Do you see the PDA client connections in the firewall's log files? What rule is triggered by these clients?

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to therealt)
Post #: 2
RE: ISA Server and PDA Wierdness - 30.Sep.2008 3:27:22 PM   
therealt

 

Posts: 17
Joined: 16.Apr.2003
Status: offline
I am checking my firewall logs and will report back shortly.

If I only had one rule on my ISA server (other than the last deny everything rule):

Allow HTTP/HTTPs
From Internal
To External
For All Users

Shouldn't that let "everything" out on the Internet?

Thanks again, I appreciate it.

(in reply to tshinder)
Post #: 3
RE: ISA Server and PDA Wierdness - 1.Oct.2008 7:18:56 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
That's only two protocols, far from what I would call everything!

Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to therealt)
Post #: 4
RE: ISA Server and PDA Wierdness - 2.Oct.2008 3:12:23 PM   
therealt

 

Posts: 17
Joined: 16.Apr.2003
Status: offline
:)  ok, point taken about my use of the word "everything".

Wouldn't the above mentioned configuration allow all HTTP/HTTPS traffic through the ISA server regardless of the source?

I removed all rules on my ISA box except the above mentioned rule and the final default deny everything rule and the PDA's still can't access the Internet.

(in reply to tshinder)
Post #: 5
RE: ISA Server and PDA Wierdness - 8.Oct.2008 9:45:08 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
No problem

Check the firewall's log file information for the connections made by the PDAs. What errors do you see?

Are the PDAs configured to use the firewall as a proxy? Shouldn't be required if you're not requiring authentication, though.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to therealt)
Post #: 6

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Misc.] >> Tom's ISA Firewall Blog Discussion >> ISA Server and PDA Wierdness Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts