Hello everyone, I am getting the above error in W2K8 R2/TMG 2010/IIS 7 when I browse to the public name on the actual gateway server. I get the same error when I click on the "Browse <public name> on *:80 (http)" link in IIS Admin.
When I click on the Test Rule button for the Web Server Publishing Rule in TMG, I get: HTTP response: 500 Internal Server Error. When I simulate external http traffic in TMG, I get Allowed Traffic.
http://FQDN yields Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)
From another internal client computer:
http://public name yields Error code: 12206 The page you requested could not be reached.
http://FQDN yields Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)
Previous steps:
I have verified that the application pool identity has access to the inetpub/wwwroot folder
I tried setting the Web Proxy Autodiscover port to 8080.
Would appreciate any other pointers to a possible solution.
For this error, I suggest you check IIS logs to see what is substatus code. 404 is too general to locate the root cause.
Martinator
http://FQDN yields Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)
From another internal client computer:
http://public name yields Error code: 12206 The page you requested could not be reached.
For these two errors, it seems ISA related settings are causing these issue. In this case, we cannot help further from IIS side.
Thanks.
Marked as answer by Martinator on Sep 20, 2012 04:53 PM
To add to above said, I suggest you use localhost for test first to prevent any network issues.
Martinator
1.I was wrong about the AppPoolIdentity having access to the wwwroot folder. I have since added permission for
"IIS AppPool\DefaultAppPool" and still have the same problem.
If you enabled anonymous authentication for your site, you will also need to grant the anonymous account(IUSR by default) at least read permission to your site. And based on your description, you receiving 404 which is not permission related, for 404, substatus
code is helpful to locate the root cause.
Martinator
4 Posts
Error Code: 500 Internal Server Error. Internet Control Message Protocol (ICMP) network is unreac...
Sep 17, 2012 08:13 PM|LINK
Hello everyone, I am getting the above error in W2K8 R2/TMG 2010/IIS 7 when I browse to the public name on the actual gateway server. I get the same error when I click on the "Browse <public name> on *:80 (http)" link in IIS Admin.
When I click on the Test Rule button for the Web Server Publishing Rule in TMG, I get: HTTP response: 500 Internal Server Error. When I simulate external http traffic in TMG, I get Allowed Traffic.
On the gateway server computer:
http://127.0.0.1 or localhost yields HTTP 404 Not Found
http://FQDN yields Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)
From another internal client computer:
http://public name yields Error code: 12206 The page you requested could not be reached.
http://FQDN yields Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)
Previous steps:
I have verified that the application pool identity has access to the inetpub/wwwroot folder
I tried setting the Web Proxy Autodiscover port to 8080.
Would appreciate any other pointers to a possible solution.
Thank you
iis icmp tmg
Martinator
4 Posts
Re: Error Code: 500 Internal Server Error. Internet Control Message Protocol (ICMP) network is un...
Sep 18, 2012 01:07 AM|LINK
A few additional tidbits of info:
1. I was wrong about the AppPoolIdentity having access to the wwwroot folder. I have since added permission for
"IIS AppPool\DefaultAppPool" and still have the same problem.
2. The “Browse *:443 (https)” link in IIS Admin does work and displays the opening web page correctly
Lloydz
2335 Posts
Microsoft
Re: Error Code: 500 Internal Server Error. Internet Control Message Protocol (ICMP) network is un...
Sep 20, 2012 08:04 AM|LINK
For this error, I suggest you check IIS logs to see what is substatus code. 404 is too general to locate the root cause.
For these two errors, it seems ISA related settings are causing these issue. In this case, we cannot help further from IIS side.
Thanks.
Lloydz
2335 Posts
Microsoft
Re: Error Code: 500 Internal Server Error. Internet Control Message Protocol (ICMP) network is un...
Sep 20, 2012 08:10 AM|LINK
To add to above said, I suggest you use localhost for test first to prevent any network issues.
If you enabled anonymous authentication for your site, you will also need to grant the anonymous account(IUSR by default) at least read permission to your site. And based on your description, you receiving 404 which is not permission related, for 404, substatus code is helpful to locate the root cause.
Thanks.
Martinator
4 Posts
Re: Error Code: 500 Internal Server Error. Internet Control Message Protocol (ICMP) network is un...
Sep 20, 2012 04:52 PM|LINK
Thanks for your posts guys, I was missing the IUSR permissions but that still did not resovle the problem.
ISA/TMG is refusing/blocking the connection and I will work on that next.
Thanks for you rhelp.