Microsoft UAG – Invalid External Port bug
November 2nd, 2011
Last week I have installed a Microsoft UAG array. I installed Microsoft ForeFront Unified Access Gateway 2010 including Service Pack 1. When using an array configuration you have to deploy Microsoft’s Network Load Balancing (NLB) for redundancy and load balancing purposes. I configured NLB with multicast and IGMP support. I had configured some HTTPS trunks and some HTTP trunks for http-to-https redirection.
Everything was working perfectly and I decided to install the update KB2585140 (ForeFront UAG SP1 Update 1). The main reason for installation was the introduction of SharePoint 2010 with Office Web Apps and Lync web services publishing.
The installation process was easy and completed without any errors. I noticed that after installing the update I couldn’t activate any configuration changes. Everything I hit Activate I receive the following error message:
The Activation works again by deleting all HTTP trunks and only use HTTPS trunks. The customer started a support call with Microsoft and Microsoft acknowledges this behavior when installing the update on an array configuration. At first Microsoft advised to “break” the array and use a stand-alone server deployment. If that isn’t an option we should uninstall the update. We are told that the current configuration will get to the configuration state prior to the installation.
This morning the customer received another e-mail from Microsoft stating at more and more calls were logged with the same issues. The issues now has the highest priority for the Microsoft UAG developers. Microsoft couldn’t tell when the issue will be fixed, but I guess very soon.
So when using a Microsoft UAG array configuration DON’T install Microsoft UAG SP1 Update-1.
René Jorissen works as Solution Specialist for 4IP in the Netherlands. Network Infrastructures are the primary focus. René works with equipment of multiple vendors, like Cisco, HP Networking, Juniper Networks, RSA, PaloAlto Networks, Microsoft and many more. René is CCNA (Routing & Switching, Security), CCNP , Cisco ASA Specialist and CEFFS certified.
You can follow René on Twitter and LinkedIn.
Related Articles
4 Responses to “Microsoft UAG – Invalid External Port bug”
Leave a Reply
Share this Blog
November 28th, 2011 at 11:05 am
Any update from MS on this issue, we have it also.. How do you uninstall the update, is it possible?
November 28th, 2011 at 11:12 am
The customer received an “unofficial” update. This fixed the problem. I guess the best option is to contact support.
February 18th, 2012 at 4:24 am
Hello,
I have this issue, I’ve installed the roll up 1 but still have the problem. I’ve deleted all the trunk and disable Direct Access and still it’s impossible to activate the UAG cluster. Any idea or update could be great for us.
Thanks so much
February 18th, 2012 at 8:52 am
Dear Pavel,
I had to delete all the HTTP trunks to get the UAG going. I would suggest to create a support call at Microsoft. My customer did so and he received an update to fix the problem.
René