Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1189
  • Last Modified:

OWA problems over firewall router

Hello - I'm having some problems getting Outlook Web Access to work on machines outside of our internal network.

The server is running SBS2K, and Exchange Server works fine.  I set up OWA using SSL (from our internal certifcate authority) and it works fine for all machines internally.  

I understand that our firewall has to be configured to let the requests through - so on the routers Virtual Server i have set up the forwarding address for TCP port 443 to port 443 on the Exchange server.

However, if i use the internal i.p. address of the firewall router in a web browser (192.168.0.254) and then type /exchange:

https://192.168.0.254/exchange

I get a Cannot Find Server error page.  Obviously this is the same if i use the external IP address of the router.

If i type the server IP directly:

https://192.168.0.253/exchange

then it works...  

I have checked that the router is forwarding correctly (using hyperterminal) and port 443 shows as open using a port scan on the external IP address.

Just to check whether it was a problem with SSL - i took away the need for authentication, then port forwarded to port 80 and the same problem occurs.

Also if you type in https://192.168.0.253:443 it takes you to the default web page in IIS.  However if you type in https://192.168.0.254:443 then again, it cannot find the page.

I know i'm rambling...but can anybody help?
0
alipri
Asked:
alipri
  • 3
  • 3
1 Solution
 
scampgbCommented:
Hi alipri,

Just to be clear;
you're trying to connect to your Exchange server from INSIDE your network by specifying the IP of your firewall, which is configured for port forwarding?

This is highly unlikely to work.  The firewall is designed to NAT the traffic between it's Internal and External interface, not route traffic internally.
If you look at the firewall logs, it might mention that it's ignoring the request :-)

What happens if you try to connect to https://55.55.55.253 externally?
Where the IP is the external IP of your Firewall that is configured to port forward.

0
 
alipriAuthor Commented:
Hello there - yep trying to connect from inside the network as you said.  However, the same things happen if i change my DNS server to an external one, then go to the url of the router.

If i connect to the router IP externally (using http not https) then i get to the administration screen for the router (the router has a http web server on it)
0
 
scampgbCommented:
alipri,
> yep trying to connect from inside the network as you said.  However,
> the same things happen if i change my DNS server to an external one,
> then go to the url of the router.

You're still actually connecting from Inside the network here though.  You do need to do this test from a machine "in the real world".

If you're getting an admin screen for the router, then it's not configured to port forward properly.
You need to check the config on the router.

If you can post the make and model (better still, a link to the manual!) I'll try and suggest how to do it.

0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
alipriAuthor Commented:
Hello - thanks for the advice - i'll try accessing from an external server

this is the modem:

http://www.zoom.com/techsupport/adsl/adsl_5551.shtml
0
 
alipriAuthor Commented:
Thank you that man! D'OH!
0
 
scampgbCommented:
alipri,
Thanks for the "A".  I take it that you've got it sorted now?
Glad I could help :)
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now