[技术分享 – ISA 篇] 20100506, ISA 防火墙服务意外终止急救药方
对于 ISA 管理员来说,最头痛和棘手的问题就是遇到防火墙服务意外终止,这意味着通过 ISA 向外代理和向内发布的网络访问的大面积瘫痪。在几乎全员抱怨的巨大压力下,ISA 管理员在抓狂的同时常常感到束手无策。我们整理了以往遇到并解决的类似的案例,总结出了一些常见问题以及建议方案,希望帮助 ISA 管理员们对症下药,实施急救方案,力争快速恢复。如果您的 ISA 服务器满足以下一条或者几条情形,请您对照建议方案执行。
事件日志 |
事件描述 |
原因 |
解决方法 |
参考 |
14146 |
ISA Server failed to load Web Filter DLL <dll path>. |
第三方 web 过滤器 |
禁用第三方 web 过滤器 |
|
21238 |
ISA Server cannot connect to the Configuration Storage server ConfigurationStorageServer . example . com for one of the following reasons… |
ISA 2004 上安装了 windows SP2 补丁 |
卸载 Windows 2003 SP2, 安装 ADAM SP1, 再次安装 Windows 2003 SP2 |
|
| 8, 21204 | The ISA Server Web filter failed to log information to MSDE Database ISALOG_yyyymmdd_WEB_000 in path C:\Program Files\Microsoft ISA Server\ISALogs. The MSDE Error description is: Unspecified error. The problem may be resolved by restarting the MSSQL$MSFW service. The ISA Server Web filter failed to log information to SQL Database isa. |
MSDE 日志记录 or SQL 日志 failure | 把日志记录改成txt格式,或者检查 MSDE/SQL 是否可用 | https://technet.microsoft.com/en-us/library/cc302466.aspx |
| 14079 | Due to an unexpected error, the service fwsrv stopped responding to all requests. Stop the service or the corresponding process if it does not respond, and then start it again. | 防毒软件往往会致使 ISA 服务停止 | 禁用,最好卸载防毒软件 | https://technet.microsoft.com/en-us/library/cc707727.aspx |
| 14177 | Some certificates cannot be initialized (error code -2146885628). The Web Proxy filter could not initialize. Check that all certificates used by the Web Proxy filter are valid. | SSL 证书绑定问题,或者证书过期 | 重新申请一张新证书,并正确绑定到侦听器上 | https://support.microsoft.com/kb/940463 |
| 14176, 14172 | Disk cache Drive :\urlcache\Dir1.cdat failed to initialize. Some errors were encountered when ISA Server restored specific data cache files. ISA Server will now attempt to recover these files. | 缓存损坏或被锁定 | 停止 ISA 服务,删除缓存文件,在防毒软件或备份软件上配置把缓存目录排除在扫描之外 | https://support.microsoft.com/kb/887311 |
Cherry Qian, James Yi
微软安全支持专家