RE: My ISA 2004 has gone completely berserk
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 2 Dec 2004 08:04:26 -0600
Hi Steven,
Check out:
http://www.microsoft.com/isaserver/techinfo/guidance/2004/configuration.
asp
HTH,
Tom
www.isaserver.org/shinder
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
-----Original Message-----
From: Steven Andreca [mailto:sandreca@xxxxxxxx]
Sent: Thursday, December 02, 2004 7:39 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: My ISA 2004 has gone completely berserk
http://www.ISAserver.org
The same configuration worked fine with my ISA 2000 (luckily I still
have
that box and revived it until I figure this one out).
Exchange is on a member server behind ISA. Internal DNS is on the DC and
it uses my ISP's DNS as forwarders. My external DNS is resolved at
NetSol.
I believe it's got something to do with the way I published the
Exchange.
There's contradicting articles out there. One says you just use the
"Publish a mail server" task and another says you need to do the
"Inbound
SMTP", "Outbound SMTP" and "Outbound DNS" rules. First didn't work (for
incoming) so I used the second one. I thought that was working but now
it
appears it wasn't. For some reason though, it was working every once in
a
while. I could send myself e-mails from Yahoo but not from MSN, for
example. Stupid me I wasn't watching the alerts. The exact phrasing of
the
alert is: "Server publishing rule (Inbound SMTP) that maps <mail server
IP>:25 TCP to <external ISA IP>:25
for protocol [SMTP Server] was unable to bind a socket for the server.
The
server publishing rule cannot be applied. The failure is due to error:
0x80070034." Couldn't find anything about the error at M$.
And then there's all those detected "all port scan attacks" from my
internal DC. I guess I should just turn the "Intrusion detection" off.
Anyway, I think Jim's right: I should start from scratch and do one
thing
at the time.
Can anyone tell me what the best article about publishing Exchange is?
(Including RPC over HTTP)
Thanks guys.
Steven
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
Other related posts:
