[isalist] Re: Unable to download specific .gz files

  • From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
  • To: <isalist@xxxxxxxxxxxxx>
  • Date: Thu, 13 Jul 2006 12:32:05 -0700

http://www.ISAserver.org
-------------------------------------------------------

"Error Code: 502 Proxy Error. The request was rejected by the HTTP filter. 
Contact your ISA Server administrator. (12217)" 
..is critical to sorting this out.

What HTTP filter settings are part of that rule?
What is the ISA rev (SP2, 916106)?

-------------------------------------------------------
   Jim Harrison
   MCP(NT4, W2K), A+, Network+, PCG
   http://isaserver.org/Jim_Harrison/
   http://isatools.org
   Read the help / books / articles!
-------------------------------------------------------
 

-----Original Message-----
From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx] On 
Behalf Of Paul Noble
Sent: Thursday, July 13, 2006 07:52
To: 'isalist@xxxxxxxxxxxxx'
Subject: [isalist] Unable to download specific .gz files

http://www.ISAserver.org
-------------------------------------------------------
  
Hallo there.

Bit of an odd one this (well to me anyway :) )

Theres a user here who was getting a few files being rejected with the 
following error message:

Error Code: 502 Proxy Error. The request was rejected by the HTTP filter.
Contact your ISA Server administrator. (12217) 

I try it and get the same.

Try it from the firewall (which is configured to go via itself on the way
out) and it can access the file via the 'allow HTTP/HTTPS requests from ISA 
Server to selected servers for connectivity verifiers' system policy rule.

The only thing I can see in common is the fact that both file types are tar.gz 
files

http://homepage.hispeed.ch/rscheidegger/dri_experimental/libtxc_dxtn040524.t
ar.gz
http://www.sjbrown.co.uk/files/squish-1.6.tar.gz

The HTTP allow rule I have for users is a specific user list rather than an 
'all users' rule.

Watching the request via the real time logging I see that it hits that http 
access rule and is denied, the user is identified in the 'client username'
the user is in the assigned user group that's assigned user access.

I tried disabling the only other http filter we have installed on there 
(cyblock)and retrying but it didn't make any difference.

Not sure whats going on, can anyone suggest anything to follow up on?

Any suggestions or help are appreciated

Paul
------------------------------------------------------
List Archives: //www.freelists.org/archives/isalist/
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server Articles and Tutorials: http://www.isaserver.org/articles_tutorials/
ISA Server Blogs: http://blogs.isaserver.org/
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
Report abuse to listadmin@xxxxxxxxxxxxx 


All mail to and from this domain is GFI-scanned.

------------------------------------------------------
List Archives: //www.freelists.org/archives/isalist/
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server Articles and Tutorials: http://www.isaserver.org/articles_tutorials/
ISA Server Blogs: http://blogs.isaserver.org/
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
Report abuse to listadmin@xxxxxxxxxxxxx

Other related posts: