Remove From My Forums

Isa Server 2006 SP1, 10061 connection refused, the server you are trying to access refused the connection with the gateway

Question

0

Sign in to vote
Hi

We are getting error 10061 connection refused....with ISA 2006 logs when trying to browse an internet site (http://URL:7001) which is published on port 7001. This external site is working fine from internet. There is another Firewall in front of ISA (Cisco ASA), as per update from CISCO team that firewall is not blocking this URL, shall anyone help us to rersolve this issue

Thanks in advance

LMS
- Edited by Laljeev Madanamma Saturday, December 11, 2010 5:32 AM
Sunday, December 05, 2010 11:56 AM

Reply

|

Quote

Answers

0

Sign in to vote
10061 error code is when we dont have the connectivity with the server

client--------isa server----internet -----------web server

you are getting error 10061 connection refused in the isalogs . From my experience on such cases i can say that connectivity with the server is not there. But to do actual fact finding to find who is causing the connectivity problem you need to take network traces.

Run network monitor 3.4 while doing repro of the issue.

1. Network monitor on the client.

2. Network monitor on the internal NIC of the ISA server.

3. Network monitor on the exernal NIC of the ISA server.

filter the traffic on all three network traces to traffic for that website. From my experience i can say when you will filter this traffic on external NIC of the ISA server you might see "syn" packets going out for that website but no answers coming back from the web server. if you see that then check the device to which external NIC connects as that might be causing this loss of connectivity.

if you cant read network traces , i would suggest opening a case with microsoft.
Thanks and Regards Suraj Singh My blog: http://blogs.technet.com/b/sooraj-sec/
- Proposed as answer by Suraj Singh MSFT Saturday, December 11, 2010 5:15 AM
- Marked as answer by Keith AlabasterModerator Sunday, December 12, 2010 9:50 AM
Sunday, December 05, 2010 4:21 PM

Reply

|

Quote

All replies

0

Sign in to vote

Hi,

10061 is "A connection was refused by the destination host". It seems to be a problem on the published Server. You should check your Server settings if the server accepts the request and there are no settings that deny the request. This error means that ISA Server tried to contact the published server (in this case the published Web Server) and the server refused the request. Have you checked the Bridging tab on ISA Server that the port matches with the port on the published server. Run a NETSTAT -AN |more on the published server to see if the Server is listening on port 7001
regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de

Sunday, December 05, 2010 12:49 PM

Reply

|

Quote

0

Sign in to vote

Hi Marc

This is an external site and not managed by us. Through this site users can retrieve MMS and in other offices and through internet it's working fine

Regards

LMS

Sunday, December 05, 2010 1:30 PM

Reply

|

Quote

0

Sign in to vote
10061 error code is when we dont have the connectivity with the server

client--------isa server----internet -----------web server

you are getting error 10061 connection refused in the isalogs . From my experience on such cases i can say that connectivity with the server is not there. But to do actual fact finding to find who is causing the connectivity problem you need to take network traces.

Run network monitor 3.4 while doing repro of the issue.

1. Network monitor on the client.

2. Network monitor on the internal NIC of the ISA server.

3. Network monitor on the exernal NIC of the ISA server.

filter the traffic on all three network traces to traffic for that website. From my experience i can say when you will filter this traffic on external NIC of the ISA server you might see "syn" packets going out for that website but no answers coming back from the web server. if you see that then check the device to which external NIC connects as that might be causing this loss of connectivity.

if you cant read network traces , i would suggest opening a case with microsoft.
Thanks and Regards Suraj Singh My blog: http://blogs.technet.com/b/sooraj-sec/
- Proposed as answer by Suraj Singh MSFT Saturday, December 11, 2010 5:15 AM
- Marked as answer by Keith AlabasterModerator Sunday, December 12, 2010 9:50 AM
Sunday, December 05, 2010 4:21 PM

Reply

|

Quote

0

Sign in to vote

any updates
Thanks and Regards Suraj Singh My blog: http://blogs.technet.com/b/sooraj-sec/

Thursday, December 09, 2010 12:39 PM

Reply

|

Quote

0

Sign in to vote

Hi Suraj

Sorry for the delay, we found that the issue is heppening because of Cisco ASA. From DMZ zone we browsed the same URL through ASA and got the same error

Regards
LMS

Saturday, December 11, 2010 5:30 AM

Reply

|

Quote

0

Sign in to vote

Laljeev, if the issue is repeatable further up the line when taking the ISA Server out of the equation, then can we close this question out please?

Thanks

Keith
Keith Alabaster - MVP/Forum Moderator

Saturday, December 11, 2010 6:14 PM

Reply

|

Quote

Moderator

0

Sign in to vote

hi laljeev

thats exactly what i thought and thats what happens in most of the cases where you see 10060 or 10061 errors. they tell us about the connectivity issues and in every such case network trace is your best friend , to point out which device in the path is causing the connectivity problem. in your case its cisco ASA...:) i guess we can close this question now..?....:)
Thanks and Regards Suraj Singh My blog: http://blogs.technet.com/b/sooraj-sec/

Sunday, December 12, 2010 7:25 AM

Reply

|

Quote

0

Sign in to vote

Hi Suraj & Kaith

Surely we can close the call, since this issue is related to Cisco. Thank you .......

Regards
LMS

Sunday, December 12, 2010 7:43 AM

Reply

|

Quote

0

Sign in to vote

Question closed. Thanks Laljeev.
Keith Alabaster - MVP/Forum Moderator

Sunday, December 12, 2010 9:51 AM

Reply

|

Quote

Moderator