The title pretty much says it all....
So I have a URL 'http://sub.example.com' that resolves to a BigIP VIP that routes traffic through to the ISA server on port 90. I have the listener configured for port 90 for a custom template. If I go to the
If I request:
http://sub.example.com
ISA is returning a 302 to the login URL at
http://sub.example.com:90/CookieAuth.dll?GetLogon?curl=Z2F&reason=0&formdir=33
If I take out the :90, the site works just fine.
The rules that I am listening on the listener and Firewall rule are:
Review-Dev Listener:
Networks: All Networks (and local host)
Connections: HTTP on 90, Adv: Unlimited connections
Certificates: N/A
Authentication: HTML Form Auth, Active Dir Auth, Advanced: Require all users to authenticate, allow http, 3000 sec
Forms: Use Custom Template: Review-Listener, Advanced: Cookie name: Review; Never use persistent; Ignore IP for cookie validation; Treat as max idle time, Apply session timeouts enabled
SSO: Enabled for .example.com
Review Dev Web Pub
Action: Allow, Log
From: Anywhere
To: review-iis-dev.example.com (this is another VIP that routes traffic to the IIS site)
Traffic: HTTP
Listener: ReviewDev-Listener
Public Name: review-dev.example.com
Paths: <same as I>:/*
Authentication Delegation: NTLM
App Settings: Use custom - ReviewDev-Listener, logoff - "?cmd=logoff", logon select by user
Bridging: Redir 80
Users: All Auth Users
Schedule: Always
Link Trans: Enabled
When i first created the rule, I did not enable link translation (this seems to be the most probable culprit) and I have enabled link translation and restarted the Firewall Service.
Anyone have some thoughts?
Thanks in advance