Advertisement

12.20.2006 at 11:34PM PST, ID: 22100184 | Points: 500
[x]
Attachment Details

OWA Solution

Asked by kolcorp in Miscellaneous Networking, Application Protocols, Internet Protocols

Tags: enable, outside_access_dmz, owa

Our company is small company with some web developers going on to clients place, few of web developers need to have access to there Exchange Mailbox as currently using webmail, so i want to setup OWA on my exchange server so that they can access there exchange mailboxes from clients place.

Our company has an Exchange Server with PIX Firewall 515E, So just let me know the Steps as i m setting up OWA for the first time.i m preety much new to PIX, i have 5 public IPs and i m not able to ping to any ip from outside, so Please  go through the PIX config and let me know what all things i can do to protect my network.

Below are my PIX Details

PIX Version 6.3(3)
interface ethernet0 auto
interface ethernet1 auto
interface ethernet2 auto
nameif ethernet0 outside security0
nameif ethernet1 inside security100
nameif ethernet2 intf2 security10
hostname PIX
domain-name domain.com
fixup protocol dns maximum-length 512
fixup protocol ftp 21
fixup protocol h323 h225 1720
fixup protocol h323 ras 1718-1719
fixup protocol http 80
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol sip 5060
fixup protocol sip udp 5060
fixup protocol skinny 2000
fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol tftp 69
names
name 192.x.x.x Webserver
access-list outside_access_dmz permit icmp any any
access-list outside_access_dmz permit tcp host Webserver any
access-list outside_access_dmz permit udp host Webserver any eq domain
access-list outside_access_dmz permit tcp host Webserver any eq 1433
access-list outside_access_dmz permit udp host Webserver any eq 1434
access-list outside_access_dmz permit tcp host Webserver any eq 135
access-list outside_access_dmz deny ip any any
access-list outside_access_in permit tcp any host 213.x.x.x eq www
access-list outside_access_in permit icmp any any
access-list outside_access_in permit tcp any host 213.x.x.x eq domain
access-list outside_access_in permit tcp any host 213.x.x.x eq 1433
access-list outside_access_in permit tcp any host 213.x.x.x eq 135
access-list outside_access_in deny ip any any
pager lines 24
mtu outside 1500
mtu inside 1500
mtu intf2 1500
ip address outside 213.x.x.x 255.255.255.248
ip address inside 192.x.x.x 255.255.255.0
ip address intf2 192.x.x.x 255.255.255.0
ip audit info action alarm
ip audit attack action alarm
pdm history enable
arp timeout 14400
global (outside) 1 213.x.x.x
global (intf2) 1 192.x.x.x-192.x.x.x
nat (inside) 1 192.x.x.x 255.255.255.0 0 0
nat (intf2) 1 192.x.x.x 255.255.255.0 0 0
static (intf2,outside) 213.x.x.x Webserver netmask 255.255.255.255 0 0
access-group outside_access_in in interface outside
access-group outside_access_dmz in interface intf2
route outside 0.0.0.0 0.0.0.0 213.x.x.x 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00
timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00
timeout uauth 0:05:00 absolute
aaa-server TACACS+ protocol tacacs+
aaa-server RADIUS protocol radius
aaa-server LOCAL protocol local
http server enable
http 192.x.x.x 255.255.255.255 inside
no snmp-server location
no snmp-server contact
snmp-server community public
no snmp-server enable traps
floodguard enable
telnet 192.x.x.x 255.255.255.0 inside
telnet timeout 5
ssh timeout 5
console timeout 0
terminal width 80
Cryptochecksum:1e3e9b6db81a8f742e88b32a5daea401
: end
Start Free Trial
 
Keywords: OWA Solution
Title
1 PIX and xlate problems
2 PIX 515 SSH access
3 PIX to PIX VPN issue
4 PIX
5 configure ASA 5510 to pass throug…
6 PIX and OWA
 
Loading Advertisement...
 
[+][-]12.21.2006 at 12:06AM PST, ID: 18178897

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]12.21.2006 at 02:38AM PST, ID: 18179332

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]12.21.2006 at 03:22AM PST, ID: 18179513

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]12.21.2006 at 03:34AM PST, ID: 18179561

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]12.21.2006 at 03:36AM PST, ID: 18179571

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]12.21.2006 at 04:03AM PST, ID: 18179678

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32