• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

OWA Error Deleting Messages - Interested Shinder??

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 General] >> Web Publishing >> OWA Error Deleting Messages - Interested Shinder?? Page: [1]
Login
Message << Older Topic   Newer Topic >>
OWA Error Deleting Messages - Interested Shinder?? - 2.Apr.2004 1:02:00 AM   
corymckee

 

Posts: 57
Joined: 5.Feb.2001
Status: offline
I am getting an error when I try to delete a message from my mailbox. The server is a SBS 2003 server with ISA, Exchange and, IIS running on the same machine.

I am using the following Link translation: https://www.site.com:81 to https://www.site.com. I am using port 81 in iis so that ISA can listen on port 80.

Now here are the error messages: If I try to delete from the OWA landing page I get this error "Some items can't be deleted. They were either moved, already deleted, or access was denied." My only option here is an "OK" box. If I double click the message and then try to delete it says "502 Bad Gateway" with the same "OK" box.

If I connect to OWA internally everything works fine. If I try to get to it from the outside then I get the errors mentioned above.

Any thoughts?

[ April 03, 2004, 01:42 AM: Message edited by: corymckee ]
Post #: 1
RE: OWA Error Deleting Messages - Interested Shinder?? - 2.Apr.2004 6:48:00 PM   
paulbaldwin

 

Posts: 139
Joined: 2.Apr.2004
From: Lancashire, UK
Status: offline
Well it isn't Mr Shinder but...

You are using disimilar urls for the public (ISA)and private (internal) sites and you haven't ticked 'send the original host header' in the web publishing rule. Do this and alter the host headers on your owa site to relect this.

Link translation won't work because in the delete and move operations of owa you'd actually need the translation to be applied to the INCOMING traffic! It doesn't do that, though you will have found link translation helped some other problems.

Don't think that because you entered a different address in the Web Publishing rule's 'redirect' box that this must also become the host header. The host header and this dns lookup name (that's all it is to ISA) are quite distinct from each other.

Cheers

Paul

(in reply to corymckee)
Post #: 2
RE: OWA Error Deleting Messages - Interested Shinder?? - 3.Apr.2004 1:41:00 AM   
corymckee

 

Posts: 57
Joined: 5.Feb.2001
Status: offline
Sorry but I'm going to have to correct you on this one. There are multiple host headers and that is how I can test internal and external. The "send the original host header" checkbox IS checked.

As far as the Link translation goes, you are incorrect on this one. The whole purpose of Link Translation is to translate Incoming requests. You can read about this here "http://www.microsoft.com/technet/Security/prodtech/isa/isafp1/ltw.mspx"

As far as the host headers go this does not apply to SSL connections. They can not read host headers. It goes by the IP address that the domain name resolves to.

I appreciate the effort on this issue nonetheless.

[ April 03, 2004, 01:55 AM: Message edited by: corymckee ]

(in reply to corymckee)
Post #: 3
RE: OWA Error Deleting Messages - Interested Shinder?? - 3.Apr.2004 11:30:00 AM   
paulbaldwin

 

Posts: 139
Joined: 2.Apr.2004
From: Lancashire, UK
Status: offline
Okay, I presumed too much with "you haven't ticked 'send the original host header'", I guess there are other ways to see this problem.

When I was working on this I concluded (but never proved) that the owa client sent the link of the object you are deleting or moving in the request to the server; after all, that is the only information the client will have about the object. The link will of course have a fqdn. If you break that fqdn from what the owa server is expecting, it wont find the item you want to delete or move, or might even report it being on a different server. Awkwardly put, but I hope you can grasp what I'm getting at.

One way to break this 'matching up of fqdns' is to not tick 'send the original host header' in the circumstances I stated. In your situation I'd guess you are doing something with the link translation that is having the same effect.

And on the subject of link translation: Nothing in that article says link translation applies inbound (i.e. to client requests). Why should it? I think you misinterpreted what I said. Link translation is only applied to the server response as stated in the article:

"When a client requests an object from a Web site protected by ISA Server, ISA Server checks whether the request is allowed. If the request is allowed, ISA Server retrieves the requested object from the Web server. Before returning the response to the client, ISA Server performs link translation..."

At least we seem to be in agreement about the interaction of SSL, host-headers and dns names [Smile]

(in reply to corymckee)
Post #: 4
RE: OWA Error Deleting Messages - Interested Shinder?? - 3.Apr.2004 12:55:00 PM   
paulbaldwin

 

Posts: 139
Joined: 2.Apr.2004
From: Lancashire, UK
Status: offline
With hindsight...

I apoligise for ever mentioning 'incoming link translation'! What I was trying to suggest is that you would need the following *request* translation to make things work:

http://abc.com/cleverbit?dowith=http://abc.com/gobbledygook

translated to:

http://DEF.com/cleverbit?dowith=http://DEF.com/gobbledygook

Stupid thing to say really!

What ISA can do is change the destination to 'DEF.com' with host-header either left as 'abc.com' or changed to 'DEF.com'. Effectively:

http://DEF.com/cleverbit?dowith=http://abc.com/gobbledygook

But if this is an owa delete request and ISA changed the host-header and/or ISA mucked about with 'abc.com/gobbledygook' using link transation on the page this request came from, it's broke! (WARNING: don't take this to be actually what's going on in owa - it's a guess - but working to make it all match again makes the problem go away!).

Any clearer or am I just digging a deeper hole for myself?

Cheers

(in reply to corymckee)
Post #: 5
RE: OWA Error Deleting Messages - Interested Shinder?? - 6.Apr.2004 6:46:00 PM   
paulbaldwin

 

Posts: 139
Joined: 2.Apr.2004
From: Lancashire, UK
Status: offline
Right, I have a better answer to this one!

I reproduced the error by having ISA change the port to 81 and correct the owa server's response using link translation. Snooping the traffic (with SSL off) between ISA and Exchange showed 'unauthorised' and 'bad gateway' responses. The traffic is, as I suggested, far more complex than my simplistic explanation in previous posts, though I was surprised to see '81' crop up here and there despite link translation!

The error is exactly the same error as I experienced by having ISA change the host header.

Without tackling the inner workings of the OWA code I think I can safely say:

"OWA does not support ISA Link Translation"!

Any arguments?

On a similar line: If you attempt to use SSL to HTTP bridging with OWA and use link translation to change http -> https, it will fail. FP1 (and hopefully ISA2004) fixed this situation but ONLY if you used the 'Publish OWA Server' wizard, and it DIDN'T use link translation! Who knows what MS did to make this work; I doubt it can be turned to this problem because whatever it is isn't configurable (or is it?).

Presuming you have ISA on twin-homed server, there is no reason not to have this co-located site on the interface other than the one ISA has listeners bound to. Or, you could create new IP addresses that won't be bound by ISA. SSL to HTTP bridging could be used to allow host-headers to be used to find the correct site. I'm sure there are many other work-arounds, so there is no reason to use link translation in this situation. Therefore, no problem.

Cheers

Paul

(in reply to corymckee)
Post #: 6
RE: OWA Error Deleting Messages - Interested Shinder?? - 12.Apr.2004 11:14:00 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Paul,

FP1 and ISA 2004 included this fix http://support.microsoft.com/default.aspx?kbid=307347

HTH,
Tom

(in reply to corymckee)
Post #: 7
RE: OWA Error Deleting Messages - Interested Shinder?? - 16.Apr.2004 1:04:00 AM   
ljp1967

 

Posts: 192
Joined: 23.Sep.2003
From: Australia
Status: offline
hi CM,

Have found a MS KB Article which might be causing this problem...did you install the URLScan part of FP1...?

http://support.microsoft.com/default.aspx?scid=kb;en-us;328680

HTH,
ljp

[ April 16, 2004, 01:07 AM: Message edited by: ljp1967 ]

(in reply to corymckee)
Post #: 8
RE: OWA Error Deleting Messages - Interested Shinder?? - 16.Apr.2004 11:14:00 AM   
paulbaldwin

 

Posts: 139
Joined: 2.Apr.2004
From: Lancashire, UK
Status: offline
Hello ljp,

URLScan might cause a similar problem but wont solve this one. I never installed URLScan on the ISA or IIS servers used to replicate CM's problem. I believe Link Translation will always interfere with some of OWA's functionality (drag-drop, delete, etc.).

Tom's link explaining the http->https fix proves there is nothing here that might offer a solution to ISA redirecting OWA's port numbers either.

Cheers

Paul

(in reply to corymckee)
Post #: 9
RE: OWA Error Deleting Messages - Interested Shinder?? - 25.Oct.2006 7:20:52 AM   
joakimeriksson

 

Posts: 10
Joined: 25.Oct.2006
Status: offline
Hi guys,

I've seem to have the same problem as discribed here. I have an ISA 2004 (4.0.2165.610) Publishing a OWA.

The problem my users are having is when they try to delete objects.

When they have the first view of Web Access up, mark an e-mail they want to delete and press the delete button they get, roughly translated from swedish, "Cannot delete certain objects, Either the object is moved or allready deleted, or access was denied".

And when they open an object and try to delete from inside the object they get: "502 Bad Gateway"

The ISA server has an add-on from Collective Software called Flexauth to handle SSO for diffrent webapplications.

Anyone have any clue about this?

(in reply to paulbaldwin)
Post #: 10
RE: OWA Error Deleting Messages - Interested Shinder?? - 17.Apr.2007 12:35:16 PM   
tomlively

 

Posts: 3
Joined: 17.Apr.2007
Status: offline
I have the same thing happening using ISA 2004 with Link Translation configured for Exchange 2003 OWA.  Any tips would be very welcome.  I have worked through a string of problems getting this running and this seems to be the next hurdle.

(in reply to joakimeriksson)
Post #: 11
RE: OWA Error Deleting Messages - Interested Shinder?? - 17.Apr.2007 2:15:11 PM   
joakimeriksson

 

Posts: 10
Joined: 25.Oct.2006
Status: offline
Hey,

I contacted Microsoft about this issue, but then, my customer changed their mind about that was the reason we needed to use Link translation on OWA. (Witch was rather good cus my MS contact where in Dubai and their weekend is on Thursday and Friday and I had Saturday and Sunday witch gave 3 days per week to work on the issue :P )

I have the archived correspondance with Microsoft about this at work, but when i try to remember what it was i think it was something about "SSL-offloading". You have SSL to the ISA but HTTP from the ISA to the OWA it self?

If you want to I can try and find the correspondance with MS sometime when im around my workplace?

Regards
Joakim Eriksson

(in reply to tomlively)
Post #: 12
RE: OWA Error Deleting Messages - Interested Shinder?? - 19.Apr.2007 10:48:03 AM   
tomlively

 

Posts: 3
Joined: 17.Apr.2007
Status: offline
Thanks for the response.  I am not bridging to HTTP it is sent to HTTPS which is published using a different port than 443.  I would like to see whatever you have as it may give me a clue to solving the problem.

Thanks,
Tom

(in reply to joakimeriksson)
Post #: 13

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 General] >> Web Publishing >> OWA Error Deleting Messages - Interested Shinder?? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts