VPN, PIX, Exchange Server and Outlook

Hello All,

I am trying to connect Outlook to my Exchange server after connecting remotely to my network via VPN on a PIX 501.

I can ping by name and ip, can connect to shares, but cannot resolve the name of the exchange server in outlook.

Thanks in advance for any assistance.

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Outlook uses legacy NetBios hooks to Exchange.
Create yourself a LMHOSTS file with the Exchange IP address/name in it..
cepollyAuthor Commented:
I don't think it's an LMHOSTS issue. I think its an authentication issue. I am running WindowsXP Pro on my own domain.

I can ping by name and ip. I can browse the network after I do a computer search for the PDC and receive the Master Browser list.

When I go into Outlook, I already have a profile that connects to an Exchange server. My local Exchange Server that is on my local domain. To get around this, I tried to set up a new profile in Outlook for the remote username, Exchange server and domain. When I click on 'check name', I get an Exchange/Outlook prompt and regardless of what user/pw/domain combination I use, I get a 'bad logon credentials' message.

Be sure to include the PDC in the LMOSTS file.
At least try it before you rule it out.

It works perfectly fine while you are on the local lan, logged in with a domain or a local account, but does not work over VPN when logged in to a local account?
Does your VPN client get the correct WINS/DNS servers from the PIX?
I've been there, done that, and the answer is always the same - LMHOSTS...
Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

When you ping by name, does the ping response tack your domain name onto the host name that you are trying to ping?  I have had some success with adding a static WINS server in the IP config of the client PC.  I would try that or do as lrmoore suggests with the lmhosts file.

cepollyAuthor Commented:
No i get a normal internal response:

Pinging ***pms [] with 32 bytes of data:

Reply from bytes=32 time=122ms TTL=128
Reply from bytes=32 time=115ms TTL=128
Reply from bytes=32 time=113ms TTL=128
Reply from bytes=32 time=112ms TTL=128
If the server's real IP is, and you go home to a broadband connection to make the VPN connection, is your home local lan also 192.168.1.x ?

cepollyAuthor Commented:
Yes my local lan is as well.

That's your problem. Try changing your local LAN to something else like 192.168.2.x..

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
What I think you should do is ethier do a subnetting and make your subnets different i.e. at home and at your server because generally there are problems with the router if you are pining or connecting to the networks having same subnet.

Please try this and let me know if it works
Now that Prashant has repeated what lrmoore said, we can continue.
cepollyAuthor Commented:

Thanks Lrmoore and Tom.

I am still testing and will get back to you with results.
cepollyAuthor Commented:
Thanks Lrmoore. That was it. I tried it on other PC's without domains and the VPN with Outlook/Exchange worked like a charm.

Thanks again.

Well done Lrmoore!!! :-)

I've spent 2 months struggling with Outlook via vpn access from home pcs (on adsl broadband) to our company Exchange Server. Some home PCs it worked, others not. Changing my local Lan to 192.168.2.x  has fixed this for me. I no longer have to use Outlook Web Access.

The thing that baffled me was that VPN connection always worked a treat and I could do everything I wanted to remotely apart from use Outlook. I was assuming (incorrectly) that it was something to do with ports e.g. firewall blocking special ports Exchange/Outlook used. I've looked for answers to this question all over the net and tried a load of other things - but yours is the only one that worked.

Thanks again

Could someone be so kind as to post their working config?  For some reason, I cannot get this to work when my remote network is on a different subnet.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Software Firewalls

From novice to tech pro — start learning today.