• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 414
  • Last Modified:

Can access OWA externally but not internally

I am running Exchange 2000 Ent. on two backend servers and have a front-end server as well.  My PIX firewall has a static NAT that forwards traffic from the outside to my OWA server which is on my LAN.  Accessing the OWA server works outside the firewall.  However, OWA does not work internally except to enter in ip_address/exchange.  I  thought about creating a CNAME record on my DNS server to resolve my OWA server URL except my internal AD domain name is different than my public domain name.  Is there a way to create a rule in my firewall that will redirect to my internal OWA server?
0
wmorlett
Asked:
wmorlett
1 Solution
 
SembeeCommented:
You cannot route traffic back on itself in the firewall.
Therefore you will have to setup a split DNS system. This is where you have a local copy of the DNS information internally, which contains a mix of internal and external addresses.

I have more information on what you need to do here:

http://www.amset.info/netadmin/split-dns.asp

Simon.
0
 
BrianClark72403Commented:
Assuming you have an internal DNS server set up, can you just add a zone that pretends to be your external domain and then put the internal IP address in.

To test though, add 'yourexternaldnsname.company.com' to your HOSTS file with the internal ip.

eg

192.168.0.50    outlookweb.mycompany.com

I've got a client whose domain is 'something.local.'  On their primary internal DNS server I've created a zone called 'something.com' and then put in the internal ip address for 'www.internal.com' for the similar scenario.
0
 
BrianClark72403Commented:
I meant www.something.com (sorry)  - also you can't route traffic intended for the inside of a pix back over the inside of a pix.
0
 
wmorlettAuthor Commented:
I was able to solve the problem by using the following command on my PIX:

static (inside, outside) PUBLIC_IP INTERNAL_IP dns netmask 255.255.255.255. 0 0

PUBLIC_ IP = PUBLIC IP address of OWA
INTERNAL_IP = PRIVATE IP address of OWA
0
 
moduloCommented:
PAQed with points refunded (125)

modulo
Community Support Moderator
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now