[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

RPC OVER HTTP WORKS INTERNALLY BUT NOT EXTERNALLY

Posted on 2006-06-27
15
Medium Priority
?
473 Views
Last Modified: 2010-03-06
I setup RPC over HTTP on my Exchange 2003 box that runs windows 2003 server.  RPC over HTTP works internally but not externally.  Can anyone give me some clue??  I do have a firewall and its a sonicwall. Do I need to add specific ports.  I added ports 6001, 6002, and 6004 and forwarded them to my exchange server.
0
Comment
Question by:Matt Pessolano
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 5
  • 4
15 Comments
 
LVL 31

Expert Comment

by:LeeDerbyshire
ID: 16992909
Depending on whether your using HTTP or HTTPS, you will need to forward port 80 or 443.
0
 
LVL 6

Expert Comment

by:Michael S
ID: 16992935
Those ports don't need to be forwarded on your firewall - they are ports that Exchange uses internally.

You need to have SSL forwarded with a certificate installed in IIS, and configure RPC over HTTPS to point to your external DNS.

Follow this link for more info:

http://www.amset.info/exchange/rpc-http-server.asp

Jay
0
 
LVL 1

Author Comment

by:Matt Pessolano
ID: 16993078
i deleted those other post and forwarded port 80 to my exchange server and I get the login prompt but then it never connects
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 31

Expert Comment

by:LeeDerbyshire
ID: 16993183
Have a look under the Tutorials section of this link:
http://www.msexchange.org/pages/search.asp?query=rpc
There are lots of RPC/HTTPS articles there.
0
 
LVL 31

Expert Comment

by:LeeDerbyshire
ID: 16993346
Come to think of it, do you have a computer (say a laptop) that can be connected to the server either directly via the LAN, and also from the Internet?  Since you said that it works internally, it would be good if you could use a computer that is known to work internally, and then try to get it to connect externally.  That way, you can be sure that all your settings are right, and that you need to look at the firewall.
0
 
LVL 1

Author Comment

by:Matt Pessolano
ID: 16993419
yea I do that is what I am using.  A laptop.  
0
 
LVL 31

Expert Comment

by:LeeDerbyshire
ID: 16993507
Is there any way you can get the laptop connected externally, get the IP address, and then temporarily allow all traffic from that IP to the server - just to see if there is a firewall problem?  As far as I know, this doesn't require any other ports beside the HTTP/S ones, but it's possible that a sophisticated firewall might need to be told more about the kind of traffic going through it.
0
 
LVL 6

Expert Comment

by:Michael S
ID: 16993547
You have to have an SSL certificate in order for it to work externally.  It is a misnomer to call it RPC over HTTP, when it is in reality RPC over HTTPS.  If you try to connect just over HTTP, you'll be banging your head against a wall for days.
0
 
LVL 1

Author Comment

by:Matt Pessolano
ID: 16993566
no right now im just doing rpc/http  im still not getting anywhere
0
 
LVL 1

Author Comment

by:Matt Pessolano
ID: 16993572
i tried the firewall portion as well. Im allowed access.  Does the global catalog server have to be windows 2003 in order for this to work?
0
 
LVL 6

Expert Comment

by:Michael S
ID: 16993646
On the computer that you say works internall, go to Start/Run and type in outlook.exe /rpcdiag.

Under the Conn heading if it is working properly it will say HTTPS.  If it is not working properly it will say TCP/IP.
0
 
LVL 1

Author Comment

by:Matt Pessolano
ID: 16994158
when i type that in Outlook just pops up.  I dont get anything else.
0
 
LVL 31

Expert Comment

by:LeeDerbyshire
ID: 16994361
Make sure that you don't already have OL running.  The /rpcdiag switch will open OL as normal, but there should be another window appearing on the screen somewhere.
0
 
LVL 1

Author Comment

by:Matt Pessolano
ID: 16994381
it says tcp/ip
0
 
LVL 6

Accepted Solution

by:
Michael S earned 2000 total points
ID: 16994447
I would start over and follow this link:

http://www.amset.info/exchange/rpc-http.asp

You will need an SSL certificate.  You can either use your own CA or download a temporary one from www.rapidssl.com

Simon's guide works very well, along with the one at http://www.petri.co.il/configure_rpc_over_https_on_a_single_server.htm

Good luck!
0

Featured Post

[Webinar] Lessons on Recovering from Petya

Skyport is working hard to help customers recover from recent attacks, like the Petya worm. This work has brought to light some important lessons. New malware attacks like this can take down your entire environment. Learn from others mistakes on how to prevent Petya like worms.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Know the reasons and solutions to move/import EDB to New Exchange Server. Also, find out how to recover an Exchange .edb file and to restore the file back.
If something goes wrong with Exchange, your IT resources are in trouble.All Exchange server migration processes are not designed to be identical and though migrating email from on-premises Exchange mailbox to Cloud’s Office 365 is relatively simple…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question