Странно как-то, теста ради поставил на другой машине еще один HC и всю схему пустил через нее, т.е. стало так:
клиент -> (8080) сервер с HC (3120) -> (3120) сервер с HC (8080) -> (8080) ISA Server
работает
старый сам авторизоваться у ISA не может, новый может...
хотя потом случается таже история и с новым HC
вот кусок лога с первоначального HC, видно что он соединяется со вторым по порту 3120:
===========================================================================================
28.02.08 07:38:14,301 # 1270: Connection from art-admin/192.168.1.226 to HC Version 1.00 RC1 (1.0.0.21)
28.02.08 07:38:14,379 # 1270: Connect to proxy: art-admin(art-admin:3120)
28.02.08 07:38:14,442 # 1270/6587 >>> URL:
http://www.e1.ru/news/GET
http://www.e1.ru/news/ HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-powerpoint, application/msword, application/xaml+xml, application/vnd.ms-xpsdocument, application/x-ms-xbap, application/x-ms-application, application/vnd.ms-excel, */*
Referer:
http://www.e1.ru/Accept-Language: ru
UA-CPU: x86
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.2; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 1.1.4322; MAXTHON 2.0)
Connection: Keep-Alive
Host:
www.e1.ruCookie: urbid=R8Vy+AAAZXwDA/8C9uCvi+K07iI=
If-Modified-Since: Wed, 27 Feb 2008 16:26:04 GMT
28.02.08 07:38:14,504 # 1270: Outbound Connection, Local port: 2005
28.02.08 07:38:30,285 # 1270 <<< URL:
http://www.e1.ru/news/Sleep(ReqRepeatPause)
28.02.08 07:38:32,488 # 1270 <<< URL:
http://www.e1.ru/news/HTTPHeader=GET
http://www.e1.ru/news/ HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-powerpoint, application/msword, application/xaml+xml, application/vnd.ms-xpsdocument, application/x-ms-xbap, application/x-ms-application, application/vnd.ms-excel, */*
Referer:
http://www.e1.ru/Accept-Language: ru
UA-CPU: x86
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.2; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 1.1.4322; MAXTHON 2.0)
Connection: Keep-Alive
Host:
www.e1.ruCookie: urbid=R8Vy+AAAZXwDA/8C9uCvi+K07iI=
If-Modified-Since: Wed, 27 Feb 2008 16:26:04 GMT
AnswerCode=0
28.02.08 07:38:32,581 # 1270: Outbound Connection, Local port: 2007
28.02.08 07:38:32,644 # 1270
Connected to host: art-admin, port: 3120
28.02.08 07:38:32,706 # 1270 <<< URL:
http://www.e1.ru/news/HTTP/1.1 407 Proxy Authentication Required ( The ISA Server requires authorization to fulfill the request. Access to the Web Proxy filter is denied. )
Via: 1.1 YEK-SGM-ISA01
Proxy-Authenticate: Negotiate
Proxy-Authenticate: Kerberos
Proxy-Authenticate: NTLM
Proxy-Authenticate: Basic realm="yek-sgm-isa01.sgm.local"
Connection: keep-alive
Proxy-Connection: close
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Content-Length: 4112