[isalist] Proxy traffic to private NLB address
- From: "Mayo, Bill" <bemayo@xxxxxxxxxxxxxxxx>
- To: <isalist@xxxxxxxxxxxxx>
- Date: Wed, 29 Sep 2010 16:23:49 -0400
I have a 2-node ISA Server 2006 NLB used for outbound proxy requests,
and have just discovered that there is at least some proxy traffic being
targeted towards the private addresses used by the NLB NIC on these
servers. These servers have several NICs and IP's. I am seeing traffic
being sent to port 8080 on the IP address that is assigned to the NIC
used in the NLB for each of the servers. The "advertised" IP address
for the NLB points to the internal interface for the servers, and I am
struggling to see where/how the computers in question are getting the
NLB IP's from. The traffic for the NLB's is private and not routable on
our network. I would not be surprised to find that I have something
configured wrongly, but I'm only seeing this for a small percentage of
clients that use this proxy. I used MS Network Monitor on one of the
machines from which I am seeing the traffic, but it didn't really help
clear anything up for me.
Can anyone advise of a misconfiguration in ISA that would cause traffic
to be targeted to the NLB address, or any other reason?
Bill Mayo
Other related posts:
