Solved

Exchange Back-end server dropping the IIS connection to the Front-end server

Posted on 2006-06-17
6
873 Views
Last Modified: 2008-01-09
We currently 2 exchange servers one running win 2000 O.S. with exchange 2003 (front-end) and  the other win 2003 ENT running the exchange 2003 (back-end).

The problem is that it is dropping the Webmail (OWA) connection; this means that Webmail (OWA) can not be accessed at all, internally or externally .
but all the services are running non have failed it just does not allow to access to the Webmail (OWA). to currently fix this problem that keeps reoccurring about the same time everyday. I run the IISRESET on the Back-end server and it fixes the problem for a bit and then it goes down again.

The other things that it is doing are:
Can not get to the OMA page and or any page that is set up on the front-end server to test if IIS failed or not.
When trying to access the exchange system manager on the both servers we receive an error that reads:

[“Access is Denied”
Facility: Win32
ID no: c00700005
Exchange system manager.]


The only way we have found to fix this is to reboot the server.
This problem also make adding users or modifying exchange in any way impossible.
Any feedback would be appreciated

Thank you, and God bless
0
Comment
Question by:cfricke1
  • 3
  • 3
6 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 16975957
Anything between the servers?
Anything else in the event logs on the server?

Are all the servers fully up to date on patches, services packs and the like - for both Windows and Exchange.

Simon.
0
 

Author Comment

by:cfricke1
ID: 16976517
Hello,

yes the systems are both up 2 date.
well the front-end server is in our DMZ.
all the ports for the connection between the servers have been open on the firewall.

Thank you Very much for your Responce.

0
 
LVL 104

Expert Comment

by:Sembee
ID: 16978297
The frontend server being in the DMZ is probably the source of the problem.
I don't deploy frontend servers in a DMZ for any reason as I don't see the point.

Once you have opened all the ports and made the changes to the Exchange config to support the DMZ then you have effectively made the firewall swiss cheese and the security "benefits" have gone.

A better option would be to bring the server inside and have the ports required (443 and 25) open directly. Otherwise deploy an ISA server in to the DMZ on a workgroup machine. Domain members do not belong in the DMZ.

Simon.
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 

Author Comment

by:cfricke1
ID: 17004978
I can see the sense in doing like that it would be better.
Thank you

**
Now of course there are other problems that have come up.
I’m having problems with OWA it only allows a handful of users to log on to it.
All of the users have the permissions needed to access the OWA.
I have looked a few post that I found on this site it has helped a bit but once I fix one problem another pops up.

For example:
My account via the OWA can’t be accessed it gives me an error reading:

The page cannot be displayed
There is a problem with the page you are trying to reach and it cannot be displayed.
________________________________________
Please try the following:
•      Open the webmail.mydomain.org home page, and then look for links to the information you want.
•      Click the Refresh button, or try again later.
•      Click Search to look for information on the Internet.
•      You can also see a list of related sites.

HTTP 500 - Internal server error
Internet Explorer

Sorry to push this other problem onto you also but as far as I can see on this site you’re the Man to talk to.
I tried one of the fixes for the redirect and that is where, all of my problems began.
Because I was not able to just type in the URL “webmail.mydomain.org” it requested me to use the https:// prefix. It still does not work correctly yet.

Thank you again
0
 
LVL 104

Accepted Solution

by:
Sembee earned 250 total points
ID: 17005019
You may have better luck closing this question and opening the question in a new one - I am not always around to answer questions.

Does OWA work inside? Direct to the backend server?
Turn off the require SSL option on the /exchange virtual directory.

Simon.
0
 

Author Comment

by:cfricke1
ID: 17005109
thank you
for all of you help
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Join & Write a Comment

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now