Thomas Shinder Blog RSS

All Blogs  »  Thomas Shinder Blog  »  News  »  Blog article: The ISA Firewall HTTP Security Filter Rejects Email Messages When Opened from a Published OWA Site

The ISA Firewall HTTP Security Filter Rejects Email Messages When Opened from a Published OWA Site

Have you ever tried to open an email message via an OWA site that has been published by an ISA Firewall and received an error message indicating that the HTTP Security Filter blocked the connection? If so, you problem saw something like this:

The page cannot be displayed

Explanation: There is a problem with the page you are trying to reach and it cannot be displayed.
Try the following:

  • Refresh page: Search for the page again by clicking the Refresh button. The timeout may have occurred due to Internet congestion.
  • Check spelling: Check that you typed the Web page address correctly. The address may have been mistyped.
  • Access from a link: If there is a link to the page you are looking for, try accessing the page from that link.

Technical Information (for support personnel)

  • Error Code: 500 Internal Server Error. The request was rejected by the HTTP Security filter. Contact your ISA Server administrator. (12217)

One reason why this might happen is that the message contained high-bit characters, as seen in non-English languages such as Spanish or German. You can fix this problem by configuring the HTTP Security Filter for the Web Publishing Rule to not block high-bit characters, as seen in the figure below.

HTH,

Tom

Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://blogs.isaserver.org/shinder/
Book: http://tinyurl.com/3xqb7
Email: tshinder@isaserver.org
MVP — Microsoft Firewalls (ISA)

This entry was posted on Monday, November 27th, 2006 at 12:08 pm and is filed under News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

3 Responses to “The ISA Firewall HTTP Security Filter Rejects Email Messages When Opened from a Published OWA Site”

  1. Jason Jones Says:

    December 1st, 2006 at 6:18 am

    However, if you only use OWA with the Enlgish language, it is probably a good idea to block high bit chars for the protection it gives against potential malicious use.

  2. Jason Jones Says:

    December 1st, 2006 at 6:19 am

    However, if you only use OWA with the English language, it is probably a good idea to block high bit chars for the protection it gives against potential malicious use.

  3. Thomas Shinder Says:

    December 1st, 2006 at 8:40 am

    Hi Jason,

    Good point!
    Thanks!
    Tom

Leave a Reply

This is a captcha-picture. It is used to prevent mass-access by robots. (see: www.captcha.net)

You must read and type the 5 chars within 0..9 and A..F, and submit the form.

  

If CAPTCHA image is missing or you cannot read the characters above, please generate a




Receive all the latest articles by email!

Receive Real-Time & Monthly ISAserver.org article updates in your mailbox. Enter your email below!
Click for Real-Time sample & Monthly sample

Become an ISAserver.org member!

Discuss your ISA Server issues with thousands of other ISA Server experts. Click here to join!

Solution Center