Blocked access to invalid host

0

Hello,
I am working with a Free Kemp LB behind a single public IP address. I am wanting to use ESP for one of my sites [lets say the VS is set to port 444] . The site balances perfectly without ESP, but once I enable it I receive a 403 and the logs show "Blocked access to invalid host VIP:444 from 10.0.0.2:23091 to VIP:444"
I followed this guide: https://support.kemptechnologies.com/hc/en-us/articles/200671169-ActiveSync-and-ESP-Block-access-to-invalid-host-mail-domain-com-443- and substituted 443 for 444 but am still seeing the errors in the logs and am unable to connect.
I am not sure that the header is actually being replaced, is there a log I can check for that?
Is there any recommendations on how to solve this problem? I will need to add a second VIP on lets say port 4444 as well.

I tried to add VIP:444 to the Allowed Virtual Hosts but it appears that port numbers are not allowed in that field.

Any help would be greatly appreciated.

1 comment

Avatar
pcharron Official comment

UPDATE: I was able to solve this issue myself by creating a sub VS and applying the rule to the root level VS. The root level VS required ESP to be disabled and than enabled on the sub VS.