Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

403 Forbidden

Status
Not open for further replies.
KPI

KPI

Technical User
Sep 24, 2002
6
US
I am looking for help with a frustrating problem I am having with MS ISA. Recently I set up ISA to be our firewall for my small company. Behind the ISA firewall I have a fileserver that is my PDC/fileserver, and another box that is a Lotus Domino server. When outside users attempt to access their email via the Lotus Notes web application, ISA prompts them for their system logon information and next prompts them for their Notes logon information. Then they can retrieve their mail through the Notes interface.

The WEIRD problem is that if a user hits the refresh button about six times, then they get a message that appears in their browser window

Error is as follows;
403 Forbidden - The server denies the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)
Internet Security and Acceleration Server


The user also gets this message if they are idle for 1 minute! Does anyone have any thoughts on what to try?

Thanks,
Chip
 
Sort by date Sort by votes
I have checked the SITE AND CONTENT RULE and everything is set to allow.
 
Upvote 0 Downvote
I have tried that Knowledge Base Article, but that is not really my problem. I 'can' get to the internal site from an outside computer. But it only allows my connection to remain active as long as there is activity and the user does not wait longer than 60 seconds between reading messages. I wonder if there is some TTL setting somewhere that I am missing?
 
Upvote 0 Downvote
Hi, I have a similar problem, but I cannot access the Exchange system from the internet, using OWA (Outlook Web Access)

I have looked at all my firewall settings in ISA and I get the dreaded "403 Forbidden - The server denies the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)" like you.

Any help would be appreciated!

Thanks.
 
Upvote 0 Downvote
I may suggest that it might involve folder permission and you have to set it to everyone.
 
Upvote 0 Downvote
I 'solved' my problem today. But in order for my users to have continuous access to their web based mail, I had to turn off the 'authenticate unknown users' feature in the incoming web request properties of ISA. Now I am not as secure, but my users are not screaming at me. It turns out that ISA was blocking their requests after 60 seconds, even though I had the TTL set to 240 seconds. So I have to now find a way to get the authentication working. The quest continues.
 
Upvote 0 Downvote
I managed to solve my problem on Friday. I added a packet filter to ISA allowing all HTTP traffic through port 80. Users have to enter in ID, password & domain, and this allows Web Outlook to open. I was amazed how quick it is!

I also changes the default IP address under IIS to the external network card, as it was set to "all unassigned"

The only problem I can see is that most attackers would scan port 80 by default, so my next step is to only open up 1 port (random) and change this in IIS. Users could then access by typing the port in the URL. Phew!

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

JonathanHaddock
  • Locked
  • Question
ISA 2006 gives 12202 error (403 forbidden)
Replies
1
Views
80
ITPangaeaArchitect
ITPangaeaArchitect
Cstorms
  • Locked
  • Question
So confused on 403 error
Replies
0
Views
34
Cstorms
Cstorms
ReadRight
  • Locked
  • Question
HTTP error 403
Replies
2
Views
64
ReadRight
ReadRight
FrankieAIX
  • Locked
  • Question
Pix 501 VPN Connection Error 403
Replies
3
Views
39
NetworkGhost
NetworkGhost
edgarv
  • Locked
  • Question
Error 403 and 401.2
Replies
0
Views
29
edgarv
edgarv

Part and Inventory Search

Sponsor

Back
Top