opening ports on a Sonicwall TZ 170 for OWA

Posted on 2007-08-08
Last Modified: 2013-11-05
Sonicwall TZ170 and a n exchangeserver 2003

What entry(s) is required in the firewall section of the TZ 170
to permit HTTP and HTTPS requests to pass thru to an internal server.
I tried a few entries with no luck.

Question by:Coldnorth
    LVL 29

    Expert Comment


    You probably don't want to allow port 80 (HTTP) to your Exchange server from the Internet. Port 443 (HTTPs) is ok but you need to have SSL setup on the OWA server. You will also need a certificate easier to buy a cert from someone like GoDaddy.
    LVL 77

    Assisted Solution

    by:Rob Williams
    Following is a "walk through" for port forwarding on a Sonicwall TZ 150. It is a different model but likely similar to yours. May be helpful:
    LVL 77

    Expert Comment

    by:Rob Williams
    Another guide, specific to the TZ170. The instructions are for HTTPS (port 443) but the method applies to all services:
    LVL 74

    Accepted Solution

    Since you have a Small Business Server along with a Sonicwall Firewall, you should only have a SINGLE NIC installed on your server.  Then, please first make sure that you've run the Configure Email and Internet Connection Wizard (CEICW -- linked as "Connect to the Internet on the To-Do list in the Server Management Console)

    A visual how-to for that is here:
    and a full networking overview for SBS is at

    Then, the following ports are standard for an SBS installation and would need to be opened on the Sonicwall:
    25 - SMTP
    443 - HTTPS (for RWW and OWA)
    444 - SharePoint
    1723 - PPTP VPN
    3389 - RDP for remote administration
    4125 - Remote Web Workplace

    Follow the instructions from one of the links provided by RobWill to set those.



    Expert Comment


    I understand the above but when I put my external IP address in by browser i simply set the sonic wall management console. How do I get it to forward by address w.x.y.z/exchange to my servers internal address w.x.y.z/exchange?

    Do I not need to set up a forward (access) rule which using an external ip and port to forward to internal ip and port?

    In short how do I get my sonic wall to distinguish between the external IP being for management or accessing OWA.

    I figured once I have this working with IPs I can then configure DNS.

    Any advise welcome
    LVL 74

    Expert Comment

    by:Jeffrey Kane - TechSoEasy
    Please click on the "ask a related question" link just above the comment box below to ask your question.



    Featured Post

    Why do Marketing keep bothering you?

    Is your marketing department constantly asking for new email signature updates? Are they requesting a different design for every department? Do they need yet another banner added? Don’t let it get you down! There is an easy way to manage all of these requests...

    Join & Write a Comment

    Set OWA language and time zone in Exchange for individuals, all users or per database.
    Use these top 10 tips to master the art of email signature design. Create an email signature design that will easily wow recipients, promote your brand and highlight your professionalism.
    In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
    In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now