IIS SSL spoof detected by firewall
Web Server forum
Back To The Forum Home!Search!Private Messaging System
Visit your User Control Panel!Register your FREE username now!Visit Our Calendar!View the Member List!Faqs!Search our Forums!

Web Server Talk Web Server Talk > Web Servers reviews > IIS server support > IIS Server Security > IIS SSL spoof detected by firewall




  Last Thread   Next Thread Next
  Show Printable Version Email this Page Subscribe to this Thread      Post New Thread    Post A Reply      

    IIS SSL spoof detected by firewall  
Bob Jones


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
07-17-07 12:20 AM

Hi all,

I'm supporting an external web site with IIS6 and SSL on a server with
Windows 2003 (dual nic cards).  There is an internal web application on the
same box using one of the NIC cards, which is behind the firewall and not
accessible to the net.  The external site is using the other card, which has
an internet address, and is sitting in a DMZ on the firewall.

I'm having trouble activating the web site because the firewall detects a
spoof during login.  It appears like the response is going out the primary
nic card (mac address reported by the firewall) instead of the correct card.

NLB is not installed on the primary nic card.  Each card has it own DNS
specific connection suffix.

The NIC cards are both on the Netserver lp1000 motherboard.

I'm out of ideas, can anyone help or point me in the right direction?

Thanks,

rljones39




[ Post a follow-up to this message ]



    Re: IIS SSL spoof detected by firewall  
Ken Schaefer


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
07-17-07 06:23 AM

Do you have "default gateways" configured on both NICs?

you should have only a single default gateway (on one of the NICs), and
configure static routes for all other non-local subnets and have them routed
through the other NIC

Cheers
Ken

"Bob Jones" <rljones39@hotmail.com> wrote in message
news:uM8OoVAyHHA.748@TK2MSFTNGP04.phx.gbl...
> Hi all,
>
> I'm supporting an external web site with IIS6 and SSL on a server with
> Windows 2003 (dual nic cards).  There is an internal web application on
> the same box using one of the NIC cards, which is behind the firewall and
> not accessible to the net.  The external site is using the other card,
> which has an internet address, and is sitting in a DMZ on the firewall.
>
> I'm having trouble activating the web site because the firewall detects a
> spoof during login.  It appears like the response is going out the primary
> nic card (mac address reported by the firewall) instead of the correct
> card.
>
> NLB is not installed on the primary nic card.  Each card has it own DNS
> specific connection suffix.
>
> The NIC cards are both on the Netserver lp1000 motherboard.
>
> I'm out of ideas, can anyone help or point me in the right direction?
>
> Thanks,
>
> rljones39
>
>
>




[ Post a follow-up to this message ]



    Sponsored Links  




 



   All times are GMT. The time now is 09:33 AM.      Post New Thread    Post A Reply      
  Last Thread   Next Thread Next


Most Popular forums 
Apache Server MySQL for Windows Sendmail
Red Hat Networking SuSe Linux Debian Linux
FreeBSD administration Sun Solaris administration Unix Shell programming
WebSphere Portal Server Exchange 2000 administration PostgreSQL administration
Linux Security Computer Security Firewalls

Forum Jump:
Rate This Thread:

Forum Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts 		HTML code is OFF
vB code is ON
Smilies are ON
[IMG] code is OFF
 
Medical and Health forum | Computer Games Reviews | Graphics design forum

Back To The Top
Home | Usercp | Faq | Register