502 Proxy Error. The Specified Secure Sockets Layer Ssl
Contents |
(Русский)ישראל (עברית)المملكة العربية السعودية (العربية)ไทย (ไทย)대한민국 (한국어)中华人民共和国 (中文)台灣 (中文)日本 (日本語) HomeProductsLibraryLearnDownloadsSupportForums Ask a question Quick access Forums home Browse forums users FAQ Search related threads Remove From My Forums Asked by:
Forefront Tmg Is Not Configured To Allow Ssl Requests From This Port.
Error Code: 502 Proxy Error. The specified Secure Sockets Layer 12204 the specified secure sockets layer (ssl) port is not allowed (SSL) port is not allowed. ISA Server is not configured to allow SSL requests from this port. Most Web browsers use port 443 for SSL requests. (12204) Forefront > Forefront TMG and ISA Server General discussion 0 Sign in to vote how to slove it????? pls help me step tp step Tuesday, February 26, 2013 8:09 AM Reply | Quote All replies 0 Sign in to vote Hi, use the SSL Tunnel Port range editor: http://technet.microsoft.com/en-us/library/cc302450.aspx http://www.isaserver.org/articles/2004tunnelportrange.htmlregards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de Tuesday, February 26, 2013 11:58 AM Reply | Quote Microsoft is conducting an online survey to understand your opinion of the Technet Web site. If you choose to participate, the online survey will be presented to you when you leave the Technet Web site.Would you like to participate? Privacy statement © 2016 Microsoft. All rights reserved.Newsletter|Contact Us|Privacy Statement|Terms of Use|Trademarks|Site Feedback TechNet Products IT Resources Downloads Training Support Products Windows Windows Server System Center Browser Office Office 365 Exchange Server SQL Server SharePoint Products Skype for Business See all products » Resources Evaluation Center Learning Resources Microsoft Tech Companion App Microsoft Technical Communities Microsoft Virtual Academy Script Center Server and Tools Blogs TechNet Blogs TechNet Flash Newsletter TechNet Gallery TechNet Library TechNet Magazine TechNet Subscriptions TechNet Video TechNet Wiki Windows Sysinternals Virtual Labs Solutions Networking Cloud and Datacenter Security Virtualization Updates Service Packs Security Bulletins Windo
here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of this site About Us Learn more about Stack Overflow the company Business Learn more about hiring developers or posting ads with us Stack Overflow Questions Jobs Documentation Tags Users Badges Ask Question x Dismiss Join the Stack Overflow Community Stack Overflow is a community of 4.7 million programmers, just like you, helping https://social.technet.microsoft.com/Forums/forefront/en-US/0c6eccb4-67ba-4c45-97c4-d758356984b9/error-code-502-proxy-error-the-specified-secure-sockets-layer-ssl-port-is-not-allowed-isa?forum=Forefrontedgegeneral each other. Join them; it only takes a minute: Sign up HTTP Proxy working normally in browser but doesn't allow connections to any port except 443 in Java up vote 1 down vote favorite I'm experiencing a strange problem that I'm not able to figure out. The proxy when used in my Java code to make non-SSL http://stackoverflow.com/questions/6655159/http-proxy-working-normally-in-browser-but-doesnt-allow-connections-to-any-port requests always gives error informing me that I cannot send SSL requests to the specified port (whereas I'm not even trying to send any SSL request), however the same proxy when configured in my Firefox browser works like a charm and I can browse all web sites normally. Note that using the same Java code, I can send requests to 443 port alone. But that's because the proxy detects that the requests are SSL, and that's why it only allows them to pass through 443 port. I don't have the option to use -Dhttp.proxyHost and -Dhttps.proxyHost options with me because they simply won't work on the Socket objects, I would need a Socks proxy which I don't have access to. So I opted to go with commons-httpclient-3.1.jar, and used ProxyClient object to obtain the socket. This is the code I'm using to obtain a socket: // Proxy Client ProxyClient client = new ProxyClient(); client.getHostConfiguration().setHost("google.com", 80); client.getHostConfiguration().setProxy("corporate-proxy", 80); ConnectResponse response = client.connect(); Socket socket = response.getSocket(); if (socket == null) { System.err.println(response.getConne
specified Secure Sockets Layer (SSL) port is not allowed. ISA Server is not configured to allow SSL requests from this port. Most http://fixmyitsystem.com/2011/03/tmg-allow-ssl-request-on-additional.html Web browsers use port 443 for SSL requests." This is the log error you will see on TMG when attempting to connect to a site on a nonstandard SSL port. In my example the port is 10443 but of course if you are not using 443 it might as well be anything. This is because be default TMG the specified will only allow HTTPS connections on 443. This is know as the Tunnel Port Ranges or TPranges. To add your non standard port number or a range, you will need to run some scripts. You only need to run this on one of the array member since this is an array setting. The Add TP Range Script Create a the specified secure text file and copy the following into it. Save the file as AddPort.vbs Dim root Dim tpRanges Dim newRange Set root = CreateObject("FPC.Root") Set tpRanges = root.GetContainingArray.ArrayPolicy.WebProxy.TunnelPortRanges set newRange = tpRanges.AddRange("SSL 10443", 10443, 10443) tpRanges.Save NOTE: ("The name" , The start port number, the end port number) From a command prompt run the script with "cscript AddTPPort.vbs"There is no feedback form this script to let you know it succeeded.You will now have to restart the firewall service on each of the TMG nodes in that array. To verify that the port has been added you can attempt to connect a remote site on that port number. You can also run a script to show the current TPRanges The List TP Ranges ScriptCreate and execute the script the same as the script above. Dim rootSet root = CreateObject("FPC.Root")Dim isaArrayDim tpRangesDim tpRangeSet isaArray = root.GetContainingArray()Set tpRanges = isaArray.ArrayPolicy.WebProxy.TunnelPortRangesFor Each tpRange In tpRangesWScript.Echo tpRange.Name & ": " & tpRange.TunnelLowPort & "-" & tpRange.TunnelHighPortNext The result from this script should now be: C:\Users\aa\Desktop>cscript listportss.vbsMicrosoft (R) Windows Script H