• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Website access not working - spoofing?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 General] >> General >> Website access not working - spoofing? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Website access not working - spoofing? - 4.May2010 5:21:24 AM   
rickyjohn

 

Posts: 10
Joined: 21.Oct.2008
Status: offline
Hi - help!!

We have a web publishing rule (listening on the external NIC port 80) but it is never getting hit. When monitoring in ISA, you can see the request coming in (and to the right IP address on the external NIC and port the rule should be listening on) but it gets denied, although not by the Default Rule (it doesnt state a rule). I just can't work out why!!

Out of interest, whenever I restart the ISA firewall, I get the following (one off) entry in the event log - could it be related? Could it be a spoofing problem?
Event 14147 -

ISA Server detected routes through adapter External that do not correlate with the network element to which this adapter belongs. For best practice, the address range of an ISA Server network should match the address ranges routable through the associated network adapter as defined in the routing table. Otherwise valid packets may be dropped as spoofed. (This alert may occur momentarily when you create a remote site network. You may safely ignore this message if it does not reoccur.) The address ranges in conflict are: xxxxxxxxxxxxx;.
Post #: 1
RE: Website access not working - spoofing? - 4.May2010 2:15:19 PM   
paulo.oliveira

 

Posts: 3472
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

- check the Result Code column on ISA logs;
- check if your Network definitions are correct;
- do you have a site-to-site VPN configured?

Regards,
Paulo Oliveira.

_____________________________

Microsoft Premier Field Engineer (PFE)
Blog: http://poliveirasilva.wordpress.com/
Twitter: https://twitter.com/poliveirasilva

(in reply to rickyjohn)
Post #: 2
RE: Website access not working - spoofing? - 4.May2010 3:41:08 PM   
rickyjohn

 

Posts: 10
Joined: 21.Oct.2008
Status: offline
Hi,

I'm not in the office currently but will check first thing.

Re. the result code - shall I post that on here or google it?
Re. the VPN. I'm a bit of an ISA novice, not sure exactly what you mean re. site to site VPN, but we do allow VPN connections into the ISA server (which incidentally doesn't seem to be working either at the moment).

Thanks.

(in reply to paulo.oliveira)
Post #: 3
RE: Website access not working - spoofing? - 4.May2010 4:26:04 PM   
paulo.oliveira

 

Posts: 3472
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

http://paulooliveirasilva.spaces.live.com/blog/cns!A60AC0386F815CB6!198.entry

The VPN is not enabled by default.

Regards,
Paulo Oliveira.

_____________________________

Microsoft Premier Field Engineer (PFE)
Blog: http://poliveirasilva.wordpress.com/
Twitter: https://twitter.com/poliveirasilva

(in reply to rickyjohn)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 General] >> General >> Website access not working - spoofing? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts