Internet Related/Filtering/Firewall Thread, Problems in IIS (or possibly ISA, or even Sharepoint...) in Technical; Hi all,
I've been sort of dumped in the poo this week, because over the half term we have somehow ...
23rd February 2010, 09:03 AM #1
Problems in IIS (or possibly ISA, or even Sharepoint...)
I've been sort of dumped in the poo this week, because over the half term we have somehow managed to screw up our VLE external access. This is a system I have never been involved in and the network manager has gone snowboarding
The VLE is our own design hosted on Sharepoint over two servers running Windows Server 2003 64bit. Up until last week, the sharepoint servers were not running service pack 1. Last week the NM attempted to go to service pack 2 on both servers in preparation for our spanky new Sims Learning Gateway install. We had a whole host of errors and, as a result one sever is running on version 188.8.131.5221, and the other on 184.108.40.20618. Trouble is I'm not involved in the sharepoint servers at all, so I wouldn't know where to start on troubleshooting the updates.
The Sims Learning Gateway was installed anyway on our half-upgraded servers and the VLE works perfectly internally. On both sharepoint servers there is a web site on IIS called Portal for external traffic to be forwarded into. It is here that we have the problem. Traffic coming from the ISA server (the rules on that server look correct for forwarding "intranet" traffic to the correct server and the correct port) does not reach IIS on the sharepoint server - I get the following error on the logs in ISA:
Failed connection attempt
Web Proxy - Reverse
A Socket operation was attempted to an unreacheable host.
External traffic - 10.36.84.9:8181 **This is the correct server IP on the correct port**
I'll cut the essay short here, any ideas would be appreciated (even if they seem obvious), and if you need information that I haven't provided here, just say!!!
IDG Tech News
23rd February 2010, 09:12 AM #2
Go to IIS admin and check all is up and running.
Restart IIS Service... this will affect all websites running on that server not just sharepoint/slg.
Thanks to vikpaw from:
Tyiell (23rd February 2010)
23rd February 2010, 09:45 AM #3
The following sites are running in IIS:
SharePoint Central Admin v3
SharePoint Shared Services
Office Web Services
An IIS Restart hasn't fixed it I'm afraid...
Last edited by Tyiell; 23rd February 2010 at 09:47 AM.
23rd February 2010, 12:15 PM #4
I'm no expert in this area - my test sharepoint setup failed last week and i had to roll back to a previous snapshot. (thanks god for virtualisation!).
the sites look like the usual ones.
can you access the site from the isa server? i.e. can it see and access the sharepoint server when you are logged in to it?
Each of those sites will run on a different port, can you access any of them through ISA?
23rd February 2010, 12:36 PM #5
Good point!! That hadn't occured to me and the answer: No! From the ISA server I cant see or ping either of the sharepoint servers, or any of the sites (intranet, mysite, etc). But I can ping everything else on the network (domain controllers, stroage servers, etc). Wierd. Does that suggest DNS issues? Or maybe a service not running on the unreachable servers...
23rd February 2010, 01:34 PM #6
not sure on how ISA works. possibly what you can do as a user logged in is different to what happens to traffic, but certainly something must be wrong here. especially if sharepoint works internally.
it could be dns, but i'm thinking it's to do with proxy exceptions. you should be bypassing proxy for those local servers. also they could be set up to not accept ping....
try browsing by dns and ip, also check proxy exceptions, though usually this only applies for connections internally.
i have to rush off now, someone else will have to take over troubleshooting.
23rd February 2010, 01:40 PM #7
I can't post a detailed response as I am out of the office and on iPhone, as daft as it sounds check the firewal on the sharepoint server maybe the update activated that.
Thanks to EduTech from:
Tyiell (23rd February 2010)
23rd February 2010, 03:08 PM #8
Ok, I'm fixed!!
I did check the local servers firewall and it was switched off (I am glad - if that had been the reason I'd be feeling pretty sheepish for not spotting it earlier!!!).
Turns out that the NM had changed the internal network ip ranges on the isa server to not include anything below .10 - which happens to include both our sharepoint servers
Changed that back and presto, all is as it should be!! I'm guessing he removed them intentionally to prevent people trying to access the vle externally while he was running the upgrade and forgot. Oops.
Alls well that ends well I guess, thanks for your help guys!!
23rd February 2010, 04:06 PM #9
23rd February 2010, 04:13 PM #10
Time to start keeping a change log...
23rd February 2010, 04:59 PM #11
Yeah an email might of been nice though just so you had a rough idea what had happend. hehe
Originally Posted by timzim
24th February 2010, 08:05 AM #12
Yeah, don't get me started or we'll have to move the post behind the red door so I can rant
Originally Posted by EduTech
24th February 2010, 08:40 AM #13
glad it's sorted.
By IT_Man_Dan in forum Web Development
Last Post: 6th October 2011, 12:55 PM
By gibbo_ap in forum Web Development
Last Post: 7th May 2008, 11:25 AM
By Grommit in forum Web Development
Last Post: 24th April 2008, 03:33 AM
By boomam in forum Wireless Networks
Last Post: 16th January 2008, 06:11 PM
By OverWorked in forum Windows
Last Post: 31st March 2006, 12:34 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Tags for this Thread