Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 2 subscribers
  • Views 7645 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unable to pass RPC over HTTPS trafic through Web Application Security (WAS)

matruel
Hi,

I just started testing the new Web Application Security on Astaro 8.002. I tried to publish the following two Microsoft Web Based applications:
-Exchnage 2010
-Terminal Server (TS) Gateway
-TS WebApplications

Exchange: Publishing works well for OWA and Active Sync however, Outlook Anywhere (RPC over HTTPS) does not work. 

Terminal Services: TS Gateway also does not work using WAS. TS Gateway also uses microsoft RPC over HTTPS. 

My WAS configuration was very simple and I used the Firewall Profile: (NONE)

Why is WAS making a difference between OWA web traffic and RPC over HTTPS traffic?

Thanks.

mat


This thread was automatically locked due to age.
  • 0
    Hi, Matruel, and welcome to the User BB!

    Are you seeing any blocks in the packet filter log?  What about hints in the Intrusion Preventin log?

    Cheers - Bob
  • 0
    Hi Bob,

    Thank you for the quick reply. There was nothing in the packet filter log and intrusion prevention is not active.

    Here is what is in the WAF log: 

    2010:11:11-15:41:46 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="68" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="200" time="120112417" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{0C0A8930-A14A-4C54-A2AC-6BCE5B2FC774}\"" set-cookie="-" 
    2010:11:11-16:16:21 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="401" time="27057" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:22 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="13728" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:22 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="10404" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:22 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="226" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="400" time="1072224" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:28 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="401" time="19197" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:28 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="2389" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:28 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="0" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="503" time="23381" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:29 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="226" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="400" time="255708" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:50 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="401" time="19208" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:50 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="13210" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:50 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="0" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="503" time="8773" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:16:50 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="226" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="400" time="241689" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{505A3FFB-02DE-461C-82EE-37C9F55D6F18}\"" set-cookie="-" 
    2010:11:11-16:29:17 ASG1 reverseproxy: srcip="65.54.166.79" localip="IP" size="58" user="-" host="65.54.166.79" method="RPC_IN_DATA" statuscode="401" time="184640" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="-" set-cookie="-" 
    2010:11:11-16:29:17 ASG1 reverseproxy: srcip="65.54.166.79" localip="IP" size="58" user="-" host="65.54.166.79" method="RPC_IN_DATA" statuscode="401" time="2079" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="-" set-cookie="-" 
    2010:11:11-16:33:06 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="401" time="2448" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:33:07 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="13437" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:33:07 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="4420" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:33:07 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="226" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="400" time="351645" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:33:14 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="401" time="12971" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:33:18 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="2415" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:35:55 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="401" time="12868" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:35:55 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="13037" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:38:18 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="226" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="400" time="303517338" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{2218D696-FEB3-4BD7-8BD6-C5EC2383355C}\"" set-cookie="-" 
    2010:11:11-16:39:37 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_IN_DATA" statuscode="401" time="14019" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{97CB6746-0E58-4DBC-B68B-A078FFF940B5}\"" set-cookie="-" 
    2010:11:11-16:39:37 ASG1 reverseproxy: srcip="184.94.0.157" localip="IP" size="58" user="-" host="184.94.0.157" method="RPC_OUT_DATA" statuscode="401" time="13575" url="/rpc/rpcproxy.dll" server="server URL" referer="-" cookie="OutlookSession=\"{97CB6746-0E58-4DBC-B68B-A078FFF940B5}\"" set-cookie="-"
  • 0
    The 400, 401 and 503 status codes worry me. I'm not sure how to address these?

    mat
  • 0
    Mat, Are you sure you have the right cert for HTTPS?  Are you doing HTTPS wirh OWA and ActiveSync?

    Cheers - Bob
  • 0
    Hi bob,

    The certificate is valid. No error when browsing to OWA. OWA and ActiveSync are both working 100%. Outlook anywhere (RCP over HTTPS) is not working at all. Has anybody else published a whole Exchange environment using Web Application Security?

    thanks.

    mat
  • 0 in reply to matruel
    Did you ever resolve this - I have the same issue. Owa and Active Sync work but Outlook Anywhere does not. No issue if I use dnat instead.