HTTP Sobre Puerto No Estandar 7777
-
viernes, 01 de febrero de 2013 5:38
Hola Jimcesse,
tengo actualmente el mismo problema que Ricardo, a través del TMG 2010 no puedo accesar a la siguiente dirección http://ww4.essalud.gob.pe:7777/acredita, si lo hago a través de una conexión sin el TMG 2010, la pagina levanta sin problemas. Utilizando el simulador de trafico obtengo lo siguiente:
Denied Traffic
- destination URL host name could not be resolved
Rule Name: Default rule
Rule Order:Additional information
From: Internal
To: External
Network Rule Name: Internet Access
Network Relationship: NAT
Protocol: Unidentified IP Traffic
Rule Application Filter:Y revisando el LOG que genera el analizador de trafico, obtengo lo siguiente:
571 01/02/2013 12:39:45 a.m. fffa675a Firewall service The Firewall service is performing rule evaluation.
572 01/02/2013 12:39:45 a.m. fffa675a Firewall service Protocol: NULL
573 01/02/2013 12:39:45 a.m. fffa675a Firewall service Packet properties: Source IP address: N/A Source array network: Internal Destination IP address: N/A Destination array network: External
574 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG will check only rules that are associated with the protocol NULL.
575 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is evaluating the rule [System] Allow MS Firewall Control communication to selected computers.
576 01/02/2013 12:39:45 a.m. fffa675a Firewall service The source port does not match the rule.
577 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is evaluating the rule Default rule.
578 01/02/2013 12:39:45 a.m. fffa675a Firewall service The rule Default rule matches the packet and may deny it. However, a rule that precedes this rule in the list of policy rules and matches the packet will take precedence and may allow the packet.
579 01/02/2013 12:39:45 a.m. fffa675a Firewall service The rule Default rule blocked the packet.
580 01/02/2013 12:39:45 a.m. fffa675a Firewall service The Firewall service is performing rule evaluation.
581 01/02/2013 12:39:45 a.m. fffa675a Firewall service Packet properties: Source IP address: N/A Source array network: Internal Destination IP address: N/A Destination array network: External
582 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is looking for an applicable network rule.
583 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is evaluating the network rule Local Host Access.
584 01/02/2013 12:39:45 a.m. fffa675a Firewall service The source IP address in the packet does not match the source specified in the network rule.
585 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is checking the reverse direction of the network rule Local Host Access.
586 01/02/2013 12:39:45 a.m. fffa675a Firewall service The destination IP address in the packet does not match the source specified in the network rule.
587 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is evaluating the network rule VPN Clients to Internal Network.
588 01/02/2013 12:39:45 a.m. fffa675a Firewall service The source IP address in the packet does not match the source specified in the network rule.
589 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is checking the reverse direction of the network rule VPN Clients to Internal Network.
590 01/02/2013 12:39:45 a.m. fffa675a Firewall service The destination IP address in the packet does not match the source specified in the network rule.
591 01/02/2013 12:39:45 a.m. fffa675a Firewall service Forefront TMG is evaluating the network rule Internet Access.
592 01/02/2013 12:39:45 a.m. fffa675a Firewall service The source and destination in the packet match the source and destination specified in the network rule, which specifies a NAT relationship.
593 01/02/2013 12:39:45 a.m. fffa675a Firewall service The network rule Internet Access matches the source and destination. A NAT relationship is specified.Tendrías algún tip o consejo ante este inconveniente.
Te lo agradecería
Saludos
- Dividido JimcesseMicrosoft Community Contributor, Moderator viernes, 01 de febrero de 2013 17:12 Nueva Pregunta
Todas las respuestas
-
viernes, 01 de febrero de 2013 22:53Moderador
Hola Daniel
Una consulta... Desde los equipos donde tratas de navegar a esa pagina tienen el cliente de TMG o no !?
Saludos,
Jimcesse Principal: http://sysadmin-cr.com/ Alterno: http://blogs.itpro.es/jimcesse
-
martes, 05 de febrero de 2013 2:49
Hola Jimcesse
y disculpa la demora en responder. no tengo ningun cliente instalado de TMG 2010 en los equipos. Es necesario instalarlo, lo descargaria desde este link http://www.microsoft.com/es-es/download/details.aspx?id=10504
Saludos...
-
miércoles, 06 de febrero de 2013 15:06Moderador
Hola Daniel
Pues podrias hacer una prueba y comertanos ya que el trafico por puertos no conocidos como el 7777 es interpretado de maneras diferente segun el tipo de clientes que sea... Sin embargo para tener mayor certeza de lo que sucede es necesario que captures el trafico en tiempo real y nos lo envies para analizarlo.
Saludos,
Jimcesse Principal: http://sysadmin-cr.com/ Alterno: http://blogs.itpro.es/jimcesse
-
martes, 12 de febrero de 2013 14:09Moderador
Hola Daniel
Se pudo realizar la prueba con el cliente TMG !? Comentanos cual es el estado del tema.
Saludos,
Jimcesse Principal: http://sysadmin-cr.com/ Alterno: http://blogs.itpro.es/jimcesse
-
lunes, 18 de febrero de 2013 7:18
Hola Jimcesse aq mí tampoco me funciona.
Puerto no estandar 444. cliente firewall. Aplicacion Lissa para permitir la tunelizacion.
Por granja isa 2006 por granja tmg migrada error.
.png)
