MS IIS Setting: HTTP Failed To Connect if Using Machine Name

TheMSsForum.com: The Microsoft Software Forum

Dear Experts,

Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my web
application and its for development and testing purpose. Normally I use the
machine name instead of localhost. So, I always use something like,
http://mymachine/MYAPP/application.dll.

But a few weeks ago, I had manually updated the Windows Update, guessing
that it might help me on resolving security vulnerabilities in Windows,
(which I'm not sure what). So after the update, I can no longer use my
machine name and I have to use the localhost instead. Of course this is OK
if I'm working on this machine alone, but I also need to do testing from
other PC directing to this machine as well.

I tried to telnet to port 80, and it failed to establish connection if I'm
not using the name 'localhost'. Looks like it block the usage of port 80 if
I'm using the machine name. Seems to me that this only require a little
twist somewhere,... but I really have no clue where.

I tried to uninstall the whole Windows Update. Tried to stopped windows
firewall, stopped anti-virus, tweak system setting. But all to no avail.

Can anybody here be kind enough to help me?

Thank you.
Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Bernard

Bernard
Tue Nov 28 00:25:47 CST 2006

No need to cross post to many groups. just IIS will do.
Now - can remote machine ping the servername?
telnet the server port 80 remotely?

If you able to do so, what do you see when test browse a hello.html
remotely?

--
Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/


"Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
news:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
> Dear Experts,
>
> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my web
> application and its for development and testing purpose. Normally I use
> the machine name instead of localhost. So, I always use something like,
> http://mymachine/MYAPP/application.dll.
>
> But a few weeks ago, I had manually updated the Windows Update, guessing
> that it might help me on resolving security vulnerabilities in Windows,
> (which I'm not sure what). So after the update, I can no longer use my
> machine name and I have to use the localhost instead. Of course this is OK
> if I'm working on this machine alone, but I also need to do testing from
> other PC directing to this machine as well.
>
> I tried to telnet to port 80, and it failed to establish connection if I'm
> not using the name 'localhost'. Looks like it block the usage of port 80
> if I'm using the machine name. Seems to me that this only require a little
> twist somewhere,... but I really have no clue where.
>
> I tried to uninstall the whole Windows Update. Tried to stopped windows
> firewall, stopped anti-virus, tweak system setting. But all to no avail.
>
> Can anybody here be kind enough to help me?
>
> Thank you.
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Ahmad

Ahmad
Tue Nov 28 00:44:44 CST 2006

Hi Bernard,

Yes. Remote machine can ping the servername. I had tried telnet to port 80
but looks like it refuse to accept the connection. Even if I tried to telnet
to port 80 on the same machine itself, it still failed, unless I use
localhost. The only way to go to port 80 is by using the name localhost and
on the same machine.

Need to inform you again, that this only happened after I installed the
security update from MS. But I had already uninstalled it, meaning it should
go to the previous state. But apparently, it is still the same, I still
cannot connect to port 80 using the machine name.

There must be something that MS had changed in my OS setting after the
security update installed.

"Bernard Cheah [MVP]" <qbernard@hotmail.com.discuss> wrote in message
news:OiFyOYrEHHA.4112@TK2MSFTNGP03.phx.gbl...
> No need to cross post to many groups. just IIS will do.
> Now - can remote machine ping the servername?
> telnet the server port 80 remotely?
>
> If you able to do so, what do you see when test browse a hello.html
> remotely?
>
> --
> Regards,
> Bernard Cheah
> http://www.iis.net/
> http://www.iis-resources.com/
> http://msmvps.com/blogs/bernard/
>
>
> "Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
> news:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
>> Dear Experts,
>>
>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my
>> web application and its for development and testing purpose. Normally I
>> use the machine name instead of localhost. So, I always use something
>> like, http://mymachine/MYAPP/application.dll.
>>
>> But a few weeks ago, I had manually updated the Windows Update, guessing
>> that it might help me on resolving security vulnerabilities in Windows,
>> (which I'm not sure what). So after the update, I can no longer use my
>> machine name and I have to use the localhost instead. Of course this is
>> OK if I'm working on this machine alone, but I also need to do testing
>> from other PC directing to this machine as well.
>>
>> I tried to telnet to port 80, and it failed to establish connection if
>> I'm not using the name 'localhost'. Looks like it block the usage of port
>> 80 if I'm using the machine name. Seems to me that this only require a
>> little twist somewhere,... but I really have no clue where.
>>
>> I tried to uninstall the whole Windows Update. Tried to stopped windows
>> firewall, stopped anti-virus, tweak system setting. But all to no avail.
>>
>> Can anybody here be kind enough to help me?
>>
>> Thank you.
>>
>>
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by ad

ad
Tue Nov 28 04:30:53 CST 2006

Microsoft IIS 6 on Win XP Pro SP2 ?
How to install IIS6 on Windows XP?


"Ahmad A. Rahman" <ahmad@edms.com.my> ¼¶¼g©ó¶l¥ó·s»D:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
> Dear Experts,
>
> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my web
> application and its for development and testing purpose. Normally I use
> the machine name instead of localhost. So, I always use something like,
> http://mymachine/MYAPP/application.dll.
>
> But a few weeks ago, I had manually updated the Windows Update, guessing
> that it might help me on resolving security vulnerabilities in Windows,
> (which I'm not sure what). So after the update, I can no longer use my
> machine name and I have to use the localhost instead. Of course this is OK
> if I'm working on this machine alone, but I also need to do testing from
> other PC directing to this machine as well.
>
> I tried to telnet to port 80, and it failed to establish connection if I'm
> not using the name 'localhost'. Looks like it block the usage of port 80
> if I'm using the machine name. Seems to me that this only require a little
> twist somewhere,... but I really have no clue where.
>
> I tried to uninstall the whole Windows Update. Tried to stopped windows
> firewall, stopped anti-virus, tweak system setting. But all to no avail.
>
> Can anybody here be kind enough to help me?
>
> Thank you.
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Ahmad

Ahmad
Tue Nov 28 04:40:29 CST 2006

OK, its not IIS 6. And you cant install it in XP. My mistake.

Please help resolving the issue.


"ad" <flying@wfes.tcc.edu.tw> wrote in message
news:uY1aMhtEHHA.4112@TK2MSFTNGP03.phx.gbl...
> Microsoft IIS 6 on Win XP Pro SP2 ?
> How to install IIS6 on Windows XP?
>
>
> "Ahmad A. Rahman" <ahmad@edms.com.my>
> ¼¶¼g©ó¶l¥ó·s»D:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
>> Dear Experts,
>>
>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my
>> web application and its for development and testing purpose. Normally I
>> use the machine name instead of localhost. So, I always use something
>> like, http://mymachine/MYAPP/application.dll.
>>
>> But a few weeks ago, I had manually updated the Windows Update, guessing
>> that it might help me on resolving security vulnerabilities in Windows,
>> (which I'm not sure what). So after the update, I can no longer use my
>> machine name and I have to use the localhost instead. Of course this is
>> OK if I'm working on this machine alone, but I also need to do testing
>> from other PC directing to this machine as well.
>>
>> I tried to telnet to port 80, and it failed to establish connection if
>> I'm not using the name 'localhost'. Looks like it block the usage of port
>> 80 if I'm using the machine name. Seems to me that this only require a
>> little twist somewhere,... but I really have no clue where.
>>
>> I tried to uninstall the whole Windows Update. Tried to stopped windows
>> firewall, stopped anti-virus, tweak system setting. But all to no avail.
>>
>> Can anybody here be kind enough to help me?
>>
>> Thank you.
>>
>>
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Roger

Roger
Tue Nov 28 07:58:20 CST 2006

How far out of date was this XP on service as obtained from
Windows Update ? Was SP 2 part of the new service applied?

When you say "all to no avail" what do you mean ? that you
could not shut off the firewall or that it made no difference?

That you pull up content with localhost shows that IIS is working.
Use of localhost does not go out the network interface, so either
tcp 80 is not being allowed in or the website is configured with
hostheaders to only allow response when hit upon with certain
host names (like localhost) in use.

"Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
news:%2355BjmtEHHA.1012@TK2MSFTNGP04.phx.gbl...
> OK, its not IIS 6. And you cant install it in XP. My mistake.
>
> Please help resolving the issue.
>
>
> "ad" <flying@wfes.tcc.edu.tw> wrote in message
> news:uY1aMhtEHHA.4112@TK2MSFTNGP03.phx.gbl...
>> Microsoft IIS 6 on Win XP Pro SP2 ?
>> How to install IIS6 on Windows XP?
>>
>>
>> "Ahmad A. Rahman" <ahmad@edms.com.my>
>> ¼¶¼g©ó¶l¥ó·s»D:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
>>> Dear Experts,
>>>
>>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my
>>> web application and its for development and testing purpose. Normally I
>>> use the machine name instead of localhost. So, I always use something
>>> like, http://mymachine/MYAPP/application.dll.
>>>
>>> But a few weeks ago, I had manually updated the Windows Update, guessing
>>> that it might help me on resolving security vulnerabilities in Windows,
>>> (which I'm not sure what). So after the update, I can no longer use my
>>> machine name and I have to use the localhost instead. Of course this is
>>> OK if I'm working on this machine alone, but I also need to do testing
>>> from other PC directing to this machine as well.
>>>
>>> I tried to telnet to port 80, and it failed to establish connection if
>>> I'm not using the name 'localhost'. Looks like it block the usage of
>>> port 80 if I'm using the machine name. Seems to me that this only
>>> require a little twist somewhere,... but I really have no clue where.
>>>
>>> I tried to uninstall the whole Windows Update. Tried to stopped windows
>>> firewall, stopped anti-virus, tweak system setting. But all to no avail.
>>>
>>> Can anybody here be kind enough to help me?
>>>
>>> Thank you.
>>>
>>>
>>
>>
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Ahmad

Ahmad
Tue Nov 28 19:20:29 CST 2006

No. SP2 is not part of the update. I already installed SP2 long time ago and
its working well (I can go to port 80 using machine name).

Yes. It's like tcp 80 not being allowed to accept connection if using the
the machine name. I had actually experienced this twice in different
machine. It all happened after I applied Windows Update. I do not sure which
Windows Update package because I normally download and install a whole bunch
of them. After I installed them and reboot, then it happened. I'm sure that
its part of the security feature that was enforced on the system. But I do
not know how to tweak it back to normal again.

I'll gonna do some more testing first and let you know the results.

"Roger Abell [MVP]" <mvpNoSpam@asu.edu> wrote in message
news:eNU5CVvEHHA.4832@TK2MSFTNGP06.phx.gbl...
> How far out of date was this XP on service as obtained from
> Windows Update ? Was SP 2 part of the new service applied?
>
> When you say "all to no avail" what do you mean ? that you
> could not shut off the firewall or that it made no difference?
>
> That you pull up content with localhost shows that IIS is working.
> Use of localhost does not go out the network interface, so either
> tcp 80 is not being allowed in or the website is configured with
> hostheaders to only allow response when hit upon with certain
> host names (like localhost) in use.
>
> "Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
> news:%2355BjmtEHHA.1012@TK2MSFTNGP04.phx.gbl...
>> OK, its not IIS 6. And you cant install it in XP. My mistake.
>>
>> Please help resolving the issue.
>>
>>
>> "ad" <flying@wfes.tcc.edu.tw> wrote in message
>> news:uY1aMhtEHHA.4112@TK2MSFTNGP03.phx.gbl...
>>> Microsoft IIS 6 on Win XP Pro SP2 ?
>>> How to install IIS6 on Windows XP?
>>>
>>>
>>> "Ahmad A. Rahman" <ahmad@edms.com.my>
>>> ¼¶¼g©ó¶l¥ó·s»D:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
>>>> Dear Experts,
>>>>
>>>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my
>>>> web application and its for development and testing purpose. Normally I
>>>> use the machine name instead of localhost. So, I always use something
>>>> like, http://mymachine/MYAPP/application.dll.
>>>>
>>>> But a few weeks ago, I had manually updated the Windows Update,
>>>> guessing that it might help me on resolving security vulnerabilities in
>>>> Windows, (which I'm not sure what). So after the update, I can no
>>>> longer use my machine name and I have to use the localhost instead. Of
>>>> course this is OK if I'm working on this machine alone, but I also need
>>>> to do testing from other PC directing to this machine as well.
>>>>
>>>> I tried to telnet to port 80, and it failed to establish connection if
>>>> I'm not using the name 'localhost'. Looks like it block the usage of
>>>> port 80 if I'm using the machine name. Seems to me that this only
>>>> require a little twist somewhere,... but I really have no clue where.
>>>>
>>>> I tried to uninstall the whole Windows Update. Tried to stopped windows
>>>> firewall, stopped anti-virus, tweak system setting. But all to no
>>>> avail.
>>>>
>>>> Can anybody here be kind enough to help me?
>>>>
>>>> Thank you.
>>>>
>>>>
>>>
>>>
>>
>>
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Bernard

Bernard
Tue Nov 28 22:45:25 CST 2006

what do you get in telnet?
can't established connection? or http error ?

is firewall on ? and you have enable http port 80 access?

--
Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/


"Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
news:%23b5P0irEHHA.1748@TK2MSFTNGP02.phx.gbl...
> Hi Bernard,
>
> Yes. Remote machine can ping the servername. I had tried telnet to port 80
> but looks like it refuse to accept the connection. Even if I tried to
> telnet to port 80 on the same machine itself, it still failed, unless I
> use localhost. The only way to go to port 80 is by using the name
> localhost and on the same machine.
>
> Need to inform you again, that this only happened after I installed the
> security update from MS. But I had already uninstalled it, meaning it
> should go to the previous state. But apparently, it is still the same, I
> still cannot connect to port 80 using the machine name.
>
> There must be something that MS had changed in my OS setting after the
> security update installed.
>
> "Bernard Cheah [MVP]" <qbernard@hotmail.com.discuss> wrote in message
> news:OiFyOYrEHHA.4112@TK2MSFTNGP03.phx.gbl...
>> No need to cross post to many groups. just IIS will do.
>> Now - can remote machine ping the servername?
>> telnet the server port 80 remotely?
>>
>> If you able to do so, what do you see when test browse a hello.html
>> remotely?
>>
>> --
>> Regards,
>> Bernard Cheah
>> http://www.iis.net/
>> http://www.iis-resources.com/
>> http://msmvps.com/blogs/bernard/
>>
>>
>> "Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
>> news:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
>>> Dear Experts,
>>>
>>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my
>>> web application and its for development and testing purpose. Normally I
>>> use the machine name instead of localhost. So, I always use something
>>> like, http://mymachine/MYAPP/application.dll.
>>>
>>> But a few weeks ago, I had manually updated the Windows Update, guessing
>>> that it might help me on resolving security vulnerabilities in Windows,
>>> (which I'm not sure what). So after the update, I can no longer use my
>>> machine name and I have to use the localhost instead. Of course this is
>>> OK if I'm working on this machine alone, but I also need to do testing
>>> from other PC directing to this machine as well.
>>>
>>> I tried to telnet to port 80, and it failed to establish connection if
>>> I'm not using the name 'localhost'. Looks like it block the usage of
>>> port 80 if I'm using the machine name. Seems to me that this only
>>> require a little twist somewhere,... but I really have no clue where.
>>>
>>> I tried to uninstall the whole Windows Update. Tried to stopped windows
>>> firewall, stopped anti-virus, tweak system setting. But all to no avail.
>>>
>>> Can anybody here be kind enough to help me?
>>>
>>> Thank you.
>>>
>>>
>>
>>
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Ahmad

Ahmad
Tue Nov 28 23:42:31 CST 2006

OK, it is confirmed to be IIS setting. and not TCP/IP network interface or
firewall filter.

The reason: Just now I tried to use Apache Tomcat webserver and point to
port 80, and I use the machinename, ITS WORKING FINE!!
Tried to telnet to port 80 using the machine name, and of course it is
working as well (using Tomcat).

So, the question now is, where is the IIS setting that filter out the
connection if using machinename? It must be somewhere. I'll let you guys
know when I found it. But appreciate if you guys can help me too. :)

Thanks.

"Roger Abell [MVP]" <mvpNoSpam@asu.edu> wrote in message
news:eNU5CVvEHHA.4832@TK2MSFTNGP06.phx.gbl...
> How far out of date was this XP on service as obtained from
> Windows Update ? Was SP 2 part of the new service applied?
>
> When you say "all to no avail" what do you mean ? that you
> could not shut off the firewall or that it made no difference?
>
> That you pull up content with localhost shows that IIS is working.
> Use of localhost does not go out the network interface, so either
> tcp 80 is not being allowed in or the website is configured with
> hostheaders to only allow response when hit upon with certain
> host names (like localhost) in use.
>
> "Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
> news:%2355BjmtEHHA.1012@TK2MSFTNGP04.phx.gbl...
>> OK, its not IIS 6. And you cant install it in XP. My mistake.
>>
>> Please help resolving the issue.
>>
>>
>> "ad" <flying@wfes.tcc.edu.tw> wrote in message
>> news:uY1aMhtEHHA.4112@TK2MSFTNGP03.phx.gbl...
>>> Microsoft IIS 6 on Win XP Pro SP2 ?
>>> How to install IIS6 on Windows XP?
>>>
>>>
>>> "Ahmad A. Rahman" <ahmad@edms.com.my>
>>> ¼¶¼g©ó¶l¥ó·s»D:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
>>>> Dear Experts,
>>>>
>>>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my
>>>> web application and its for development and testing purpose. Normally I
>>>> use the machine name instead of localhost. So, I always use something
>>>> like, http://mymachine/MYAPP/application.dll.
>>>>
>>>> But a few weeks ago, I had manually updated the Windows Update,
>>>> guessing that it might help me on resolving security vulnerabilities in
>>>> Windows, (which I'm not sure what). So after the update, I can no
>>>> longer use my machine name and I have to use the localhost instead. Of
>>>> course this is OK if I'm working on this machine alone, but I also need
>>>> to do testing from other PC directing to this machine as well.
>>>>
>>>> I tried to telnet to port 80, and it failed to establish connection if
>>>> I'm not using the name 'localhost'. Looks like it block the usage of
>>>> port 80 if I'm using the machine name. Seems to me that this only
>>>> require a little twist somewhere,... but I really have no clue where.
>>>>
>>>> I tried to uninstall the whole Windows Update. Tried to stopped windows
>>>> firewall, stopped anti-virus, tweak system setting. But all to no
>>>> avail.
>>>>
>>>> Can anybody here be kind enough to help me?
>>>>
>>>> Thank you.
>>>>
>>>>
>>>
>>>
>>
>>
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Roger

Roger
Wed Nov 29 01:59:57 CST 2006

The only place I am aware of that might fit the bill is on the
general properties of the website where one defines what
IP the site responds to, as there one can state for what names
(i.e. host headers) the IP will be effective.

"Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
news:%23rXDtk3EHHA.996@TK2MSFTNGP02.phx.gbl...
> OK, it is confirmed to be IIS setting. and not TCP/IP network interface or
> firewall filter.
>
> The reason: Just now I tried to use Apache Tomcat webserver and point to
> port 80, and I use the machinename, ITS WORKING FINE!!
> Tried to telnet to port 80 using the machine name, and of course it is
> working as well (using Tomcat).
>
> So, the question now is, where is the IIS setting that filter out the
> connection if using machinename? It must be somewhere. I'll let you guys
> know when I found it. But appreciate if you guys can help me too. :)
>
> Thanks.
>
> "Roger Abell [MVP]" <mvpNoSpam@asu.edu> wrote in message
> news:eNU5CVvEHHA.4832@TK2MSFTNGP06.phx.gbl...
>> How far out of date was this XP on service as obtained from
>> Windows Update ? Was SP 2 part of the new service applied?
>>
>> When you say "all to no avail" what do you mean ? that you
>> could not shut off the firewall or that it made no difference?
>>
>> That you pull up content with localhost shows that IIS is working.
>> Use of localhost does not go out the network interface, so either
>> tcp 80 is not being allowed in or the website is configured with
>> hostheaders to only allow response when hit upon with certain
>> host names (like localhost) in use.
>>
>> "Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
>> news:%2355BjmtEHHA.1012@TK2MSFTNGP04.phx.gbl...
>>> OK, its not IIS 6. And you cant install it in XP. My mistake.
>>>
>>> Please help resolving the issue.
>>>
>>>
>>> "ad" <flying@wfes.tcc.edu.tw> wrote in message
>>> news:uY1aMhtEHHA.4112@TK2MSFTNGP03.phx.gbl...
>>>> Microsoft IIS 6 on Win XP Pro SP2 ?
>>>> How to install IIS6 on Windows XP?
>>>>
>>>>
>>>> "Ahmad A. Rahman" <ahmad@edms.com.my>
>>>> ¼¶¼g©ó¶l¥ó·s»D:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gbl...
>>>>> Dear Experts,
>>>>>
>>>>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host my
>>>>> web application and its for development and testing purpose. Normally
>>>>> I use the machine name instead of localhost. So, I always use
>>>>> something like, http://mymachine/MYAPP/application.dll.
>>>>>
>>>>> But a few weeks ago, I had manually updated the Windows Update,
>>>>> guessing that it might help me on resolving security vulnerabilities
>>>>> in Windows, (which I'm not sure what). So after the update, I can no
>>>>> longer use my machine name and I have to use the localhost instead. Of
>>>>> course this is OK if I'm working on this machine alone, but I also
>>>>> need to do testing from other PC directing to this machine as well.
>>>>>
>>>>> I tried to telnet to port 80, and it failed to establish connection if
>>>>> I'm not using the name 'localhost'. Looks like it block the usage of
>>>>> port 80 if I'm using the machine name. Seems to me that this only
>>>>> require a little twist somewhere,... but I really have no clue where.
>>>>>
>>>>> I tried to uninstall the whole Windows Update. Tried to stopped
>>>>> windows firewall, stopped anti-virus, tweak system setting. But all to
>>>>> no avail.
>>>>>
>>>>> Can anybody here be kind enough to help me?
>>>>>
>>>>> Thank you.
>>>>>
>>>>>
>>>>
>>>>
>>>
>>>
>>
>>
>
>


Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by David

David
Wed Nov 29 04:39:07 CST 2006

No, you didn't confirm it to be IIS setting because the conclusion does
not make sense. There is no such setting to filter out connections by
machinename.

Why? Because the machinename is not used to make a connection to IIS.
The client does a DNS lookup on the machinename to obtain a IP-address,
and then it makes a TCP/IP connection to port 80 of that IP-address
using the HTTP protocol. IIS never sees the machinename, so how can it
filter out such connections?

Now, there is a documented XPSP2 security patch at the TCP/IP level
which affects local-loopback connectivity via the IP-address associated
with the machinename. It mainly affects NTLM Authentication, which is
enabled on IIS but not Apache. I forget the exact patch# but I know it
exists. And it has a Registry switch to disable that security behavior.

Why it works for Tomcat server, not certain - maybe Java uses its own
networking stack at the native layer.


//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//


Ahmad A. Rahman wrote:
> OK, it is confirmed to be IIS setting. and not TCP/IP network interface or
> firewall filter.
>
> The reason: Just now I tried to use Apache Tomcat webserver and point to
> port 80, and I use the machinename, ITS WORKING FINE!!
> Tried to telnet to port 80 using the machine name, and of course it is
> working as well (using Tomcat).
>
> So, the question now is, where is the IIS setting that filter out the
> connection if using machinename? It must be somewhere. I'll let you guys
> know when I found it. But appreciate if you guys can help me too. :)
>
> Thanks.
>
> "Roger Abell [MVP]" <mvpNoSpam@asu.edu> wrote in message
> news:eNU5CVvEHHA.4832@TK2MSFTNGP06.phx.gbl...
> > How far out of date was this XP on service as obtained from
> > Windows Update ? Was SP 2 part of the new service applied?
> >
> > When you say "all to no avail" what do you mean ? that you
> > could not shut off the firewall or that it made no difference?
> >
> > That you pull up content with localhost shows that IIS is working.
> > Use of localhost does not go out the network interface, so either
> > tcp 80 is not being allowed in or the website is configured with
> > hostheaders to only allow response when hit upon with certain
> > host names (like localhost) in use.
> >
> > "Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
> > news:%2355BjmtEHHA.1012@TK2MSFTNGP04.phx.gbl...
> >> OK, its not IIS 6. And you cant install it in XP. My mistake.
> >>
> >> Please help resolving the issue.
> >>
> >>
> >> "ad" <flying@wfes.tcc.edu.tw> wrote in message
> >> news:uY1aMhtEHHA.4112@TK2MSFTNGP03.phx.gbl...
> >>> Microsoft IIS 6 on Win XP Pro SP2 ?
> >>> How to install IIS6 on Windows XP?
> >>>
> >>>
> >>> "Ahmad A. Rahman" <ahmad@edms.com.my>
> >>> =BC=B6=BCg=A9=F3=B6l=A5=F3=B7s=BBD:%23swJFfqEHHA.4212@TK2MSFTNGP04.ph=
x=2Egbl...
> >>>> Dear Experts,
> >>>>
> >>>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to host =
my
> >>>> web application and its for development and testing purpose. Normall=
y I
> >>>> use the machine name instead of localhost. So, I always use something
> >>>> like, http://mymachine/MYAPP/application.dll.
> >>>>
> >>>> But a few weeks ago, I had manually updated the Windows Update,
> >>>> guessing that it might help me on resolving security vulnerabilities=
in
> >>>> Windows, (which I'm not sure what). So after the update, I can no
> >>>> longer use my machine name and I have to use the localhost instead. =
Of
> >>>> course this is OK if I'm working on this machine alone, but I also n=
eed
> >>>> to do testing from other PC directing to this machine as well.
> >>>>
> >>>> I tried to telnet to port 80, and it failed to establish connection =
if
> >>>> I'm not using the name 'localhost'. Looks like it block the usage of
> >>>> port 80 if I'm using the machine name. Seems to me that this only
> >>>> require a little twist somewhere,... but I really have no clue where.
> >>>>
> >>>> I tried to uninstall the whole Windows Update. Tried to stopped wind=
ows
> >>>> firewall, stopped anti-virus, tweak system setting. But all to no
> >>>> avail.
> >>>>
> >>>> Can anybody here be kind enough to help me?
> >>>>
> >>>> Thank you.
> >>>>
> >>>>
> >>>
> >>>
> >>
> >>
> >
> >

Top

Re: MS IIS Setting: HTTP Failed To Connect if Using Machine Name by Ahmad

Ahmad
Wed Nov 29 07:49:47 CST 2006

This is a multi-part message in MIME format.

------=_NextPart_000_0007_01C71400.49B73F10
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

David,

I think you are correct. And your explaination make sense. It must be at =
the NTLM authentication level or somewhere after TCP/IP receive the =
request, but bounced it back off. I know that Apache does not use NTLM =
and that makes the process is much simpler.

I tried to uninstall and re-install IIS just now, and apparently, it is =
still not working.

It must be somewhere in the registry. Somewhere in =
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa. Not sure which =
key, I'm afraid that I'll blow my whole operating system.

As for the status, I copy this the console message:


-------------------------------------------------------------------------=
-------

D:\Documents and Settings\Ahmad>telnet rahman 80
Connecting To rahman...Could not open connection to the host, on port =
80: Connec
t failed

D:\Documents and Settings\Ahmad>telnet rahman 25

D:\Documents and Settings\Ahmad>telnet localhost 25

220 rahman Microsoft ESMTP MAIL Service, Version: 6.0.2600.2180 ready at =
Wed, 2
9 Nov 2006 21:45:44 +0800
QUIT
221 Closing connection. Good bye.


Connection to host lost.

D:\Documents and Settings\Ahmad>


-------------------------------------------------------------------------=
-------



Telnet to port 25 is also not successful if using machinename. The =
journey will continue for me.

But It's weird. Am I alone affected by this weird problem? Anyone out =
there has got this kind of mess?

Thanks.



"David Wang" <w3.4you@gmail.com> wrote in message =
news:1164796747.207540.79700@j72g2000cwa.googlegroups.com...
No, you didn't confirm it to be IIS setting because the conclusion does
not make sense. There is no such setting to filter out connections by
machinename.

Why? Because the machinename is not used to make a connection to IIS.
The client does a DNS lookup on the machinename to obtain a IP-address,
and then it makes a TCP/IP connection to port 80 of that IP-address
using the HTTP protocol. IIS never sees the machinename, so how can it
filter out such connections?

Now, there is a documented XPSP2 security patch at the TCP/IP level
which affects local-loopback connectivity via the IP-address associated
with the machinename. It mainly affects NTLM Authentication, which is
enabled on IIS but not Apache. I forget the exact patch# but I know it
exists. And it has a Registry switch to disable that security behavior.

Why it works for Tomcat server, not certain - maybe Java uses its own
networking stack at the native layer.


//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//


Ahmad A. Rahman wrote:
> OK, it is confirmed to be IIS setting. and not TCP/IP network =
interface or
> firewall filter.
>
> The reason: Just now I tried to use Apache Tomcat webserver and point =
to
> port 80, and I use the machinename, ITS WORKING FINE!!
> Tried to telnet to port 80 using the machine name, and of course it is
> working as well (using Tomcat).
>
> So, the question now is, where is the IIS setting that filter out the
> connection if using machinename? It must be somewhere. I'll let you =
guys
> know when I found it. But appreciate if you guys can help me too. :)
>
> Thanks.
>
> "Roger Abell [MVP]" <mvpNoSpam@asu.edu> wrote in message
> news:eNU5CVvEHHA.4832@TK2MSFTNGP06.phx.gbl...
> > How far out of date was this XP on service as obtained from
> > Windows Update ? Was SP 2 part of the new service applied?
> >
> > When you say "all to no avail" what do you mean ? that you
> > could not shut off the firewall or that it made no difference?
> >
> > That you pull up content with localhost shows that IIS is working.
> > Use of localhost does not go out the network interface, so either
> > tcp 80 is not being allowed in or the website is configured with
> > hostheaders to only allow response when hit upon with certain
> > host names (like localhost) in use.
> >
> > "Ahmad A. Rahman" <ahmad@edms.com.my> wrote in message
> > news:%2355BjmtEHHA.1012@TK2MSFTNGP04.phx.gbl...
> >> OK, its not IIS 6. And you cant install it in XP. My mistake.
> >>
> >> Please help resolving the issue.
> >>
> >>
> >> "ad" <flying@wfes.tcc.edu.tw> wrote in message
> >> news:uY1aMhtEHHA.4112@TK2MSFTNGP03.phx.gbl...
> >>> Microsoft IIS 6 on Win XP Pro SP2 ?
> >>> How to install IIS6 on Windows XP?
> >>>
> >>>
> >>> "Ahmad A. Rahman" <ahmad@edms.com.my>
> >>> =
=BC=B6=BCg=A9=F3=B6l=A5=F3=B7s=BBD:%23swJFfqEHHA.4212@TK2MSFTNGP04.phx.gb=
l...
> >>>> Dear Experts,
> >>>>
> >>>> Previously I'm working on Microsoft IIS 6 on Win XP Pro SP2 to =
host my
> >>>> web application and its for development and testing purpose. =
Normally I
> >>>> use the machine name instead of localhost. So, I always use =
something
> >>>> like, http://mymachine/MYAPP/application.dll.
> >>>>
> >>>> But a few weeks ago, I had manually updated the Windows Update,
> >>>> guessing that it might help me on resolving security =
vulnerabilities in
> >>>> Windows, (which I'm not sure what). So after the update, I can no
> >>>> longer use my machine name and I have to use the localhost =
instead. Of
> >>>> course this is OK if I'm working on this machine alone, but I =
also need
> >>>> to do testing from other PC directing to this machine as well.
> >>>>
> >>>> I tried to telnet to port 80, and it failed to establish =
connection if
> >>>> I'm not using the name 'localhost'. Looks like it block the usage =
of
> >>>> port 80 if I'm using the machine name. Seems to me that this only
> >>>> require a little twist somewhere,... but I really have no clue =
where.
> >>>>
> >>>> I tried to uninstall the whole Windows Update. Tried to stopped =
windows
> >>>> firewall, stopped anti-virus, tweak system setting. But all to no
> >>>> avail.
> >>>>
> >>>> Can anybody here be kind enough to help me?
> >>>>
> >>>> Thank you.
> >>>>
> >>>>
> >>>
> >>>
> >>
> >>
> >
> >

------=_NextPart_000_0007_01C71400.49B73F10
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2900.2180" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY>
<DIV><FONT face=3DArial size=3D2>David,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>I think you are correct. And your =
explaination make=20
sense. It must be at the NTLM authentication level or somewhere after =
TCP/IP=20
receive the request, but bounced it back off. I know that Apache does =
not use=20
NTLM and that makes the process is much simpler.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>I tried to uninstall and re-install IIS =
just now,=20
and apparently, it is still not working.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>It must be somewhere in the registry. =
Somewhere in=20
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa. Not sure which =
key, I'm=20
afraid that I'll blow my whole operating system.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>As for the status, I copy this the =
console=20
message:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT><FONT face=3DArial =
size=3D2></FONT>
<HR>
<BR><FONT face=3D"Lucida Console" size=3D2>D:\Documents and =
Settings\Ahmad&gt;telnet=20
rahman 80<BR>Connecting To rahman...Could not open connection to the =
host, on=20
port 80: Connec<BR>t failed</FONT></DIV>
<DIV><FONT face=3D"Lucida Console" size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3D"Lucida Console" size=3D2>D:\Documents and=20
Settings\Ahmad&gt;telnet rahman 25</FONT></DIV>
<DIV><FONT face=3D"Lucida Console" size=3D2></FONT>&nbsp;</DIV>
<DIV>
<DIV><FONT face=3D"Lucida Console" size=3D2>D:\Documents and=20
Settings\Ahmad&gt;telnet&nbsp;localhost 25</FONT></DIV></DIV>
<DIV><FONT face=3D"Lucida Console" size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3D"Lucida Console" size=3D2>220 rahman Microsoft ESMTP =
MAIL Service,=20
Version: 6.0.2600.2180 ready at&nbsp; Wed, 2<BR>9 Nov 2006 21:45:44=20
+0800<BR>QUIT<BR>221 Closing connection. Good bye.</FONT></DIV>
<DIV><FONT face=3D"Lucida Console"></FONT>&nbsp;</DIV><FONT size=3D2>
<DIV><FONT face=3DArial></FONT><FONT face=3DArial></FONT><FONT=20
face=3DArial></FONT><FONT face=3DArial></FONT><FONT =
face=3DArial></FONT><FONT=20
face=3DArial></FONT><BR><FONT face=3D"Lucida Console">Connection to host =

lost.</FONT></DIV>
<DIV><FONT face=3D"Lucida Console"></FONT>&nbsp;</DIV>
<DIV><FONT face=3D"Lucida Console">D:\Documents and=20
Settings\Ahmad&gt;</FONT></DIV>
<DIV><FONT face=3D"Lucida Console"></FONT>&nbsp;</DIV>
<DIV><FONT face=3D"Lucida Console">
<HR>
</FONT></DIV>
<DIV><FONT face=3D"Lucida Console"><BR></FONT></DIV></FONT>
<DIV><FONT face=3DArial size=3