Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Win2k TS Users cant connect to http but can connect to https

Status
Not open for further replies.
Knackster

Knackster

IS-IT--Management
Mar 14, 2007
167
US
I've got a win2k server as a terminal server.

Typically serves 12 users and not a heavy load.

This is all patched up with sp4.

I installed Trend Micro officescan on the server in install mode. It didn't take ( haven't figured out why yet) so I removed it.

Now, when my users log in to the terminal server, they can't connect to http sites but they can conenct to https sites. This includes internal and across our firewall.

I can ping the http sites with not problem. DNS is working.

For example:
works
does not.

This has thrown me for a loop.

Now, this server has had a very long uptime and probably hasnt been rebooted in 5 or 6 months, with the exception of the r and r of the officescan software.

IE 6 is the browser of choice here.

Anyone have any clues?

Thanks

Chris
IT Manager
Houston, Texas
 
Sort by date Sort by votes
Perhaps Trend didnt uninstall correctly. Check your services and see if the OfficeScanNT Personal Firewall service is still installed and running.



RoadKi11

"This apparent fear reaction is typical, rather than try to solve technical problems technically, policy solutions are often chosen." - Fred Cohen
 
Upvote 0 Downvote
There is no reminents left of office scan or any processes. Plus the firewall was not installed in this instance.

Chris
IT Manager
Houston, Texas
 
Upvote 0 Downvote
I found the problem.

There apparently was a piece of spyware installed on my ts that asfter I rebooted it, it enabled the spyware. I also believe that is why trend micro had a problem installing.

My firewall, sensing the rougue port 80 traffic, flagged it as spyware and dropped the connection, just like it was supposed to do. I just totally forgot that I had IPS enabled on the internal network as well as our external network.

So, I am currently erradicating the spyware and changed the IPS on our firewall for the http outbound proxy to show a deny message instead of just dropping the conenction. It sure will help in diagnosing problems later.

Hope this helps someone else out.

Chris
IT Manager
Houston, Texas
 
Upvote 0 Downvote
Well i am glad you figured it out because that wouldnt have been one of my guesses.



RoadKi11

"This apparent fear reaction is typical, rather than try to solve technical problems technically, policy solutions are often chosen." - Fred Cohen
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question
Can not copy files to Mapped drive
Replies
0
Views
464
microsGuy16
microsGuy16
DTGMI
  • Locked
  • Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
445
DTGMI
DTGMI
dpellegrini
  • Locked
  • Question
Website will load using hostname but not IP address
Replies
3
Views
896
mangentle
mangentle
Sequeira69
  • Locked
  • Question
Server cant connect to another afeter url
Replies
0
Views
135
Sequeira69
Sequeira69
bechna
  • Locked
  • Question
Unable to connect to VPN windows server 2019
Replies
0
Views
169
bechna
bechna

Part and Inventory Search

Sponsor

Back
Top