All geek questions in one place

An IIS 7 site using HTTPS is not accessible from the outside Internet (accessible from the intranet)

I am trying to configure an HTTPS site on IIS 7. I added a certificate, set the appropriate bindings, and the site is accessible on my corporate intranet, however, no one from the outside Internet can access it. I have 1: 1 NAT configured for port 443, which should route IP address requests for my server. I have the same situation for port 80 and I have no problem with available http hosts.

Any suggestions on what I might be missing here?

UPDATE:

As it turns out, the company that manages my company’s firewall added an exception for https and 443 and proper routing, but did not add an exception for the process that processes https.

+4
source share
1 answer

To get started, from the outside, use telnet to find out if you can even get to the port from the outside:

telnet <host name or ip> 443

Pay attention to the space in front of the port. If the telnet screen is completely black, the w cursor is in the upper left corner, you can connect, so this is an iis problem.

If telnet just sits there, it tries to connect, but cannot. It can finally drop “connection refused” or “cannot connect”. This means that the problem is with the physical firewall (which needs an open path) or on the iis server itself (in its firewall or iis config).

In this case, the next step: Perform the telnet operation on the IIS server itself and from the same network as IIS (for example, not through the firewall).

- If it works: the problem is the configuration of the network firewall

- If this does not work, you need to check the firewall on the IIS server itself (Windows Firewall) and the IIS configuration itself

Note. On Windows 7 and Vista, telnet may be missing. Google how to enable it.

+4
source

Source: https://habr.com/ru/post/1391723/

More articles:


All Articles