Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 9633
  • Last Modified:

opening ports on a Sonicwall TZ 170 for OWA

Sonicwall TZ170 and a n exchangeserver 2003

What entry(s) is required in the firewall section of the TZ 170
to permit HTTP and HTTPS requests to pass thru to an internal server.
I tried a few entries with no luck.

2 Solutions

You probably don't want to allow port 80 (HTTP) to your Exchange server from the Internet. Port 443 (HTTPs) is ok but you need to have SSL setup on the OWA server. You will also need a certificate easier to buy a cert from someone like GoDaddy.

Rob WilliamsCommented:
Following is a "walk through" for port forwarding on a Sonicwall TZ 150. It is a different model but likely similar to yours. May be helpful:
Rob WilliamsCommented:
Another guide, specific to the TZ170. The instructions are for HTTPS (port 443) but the method applies to all services:
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Since you have a Small Business Server along with a Sonicwall Firewall, you should only have a SINGLE NIC installed on your server.  Then, please first make sure that you've run the Configure Email and Internet Connection Wizard (CEICW -- linked as "Connect to the Internet on the To-Do list in the Server Management Console)

A visual how-to for that is here:  http://sbsurl.com/ceicw
and a full networking overview for SBS is at http://sbsurl.com/msicw

Then, the following ports are standard for an SBS installation and would need to be opened on the Sonicwall:
25 - SMTP
443 - HTTPS (for RWW and OWA)
444 - SharePoint
1723 - PPTP VPN
3389 - RDP for remote administration
4125 - Remote Web Workplace

Follow the instructions from one of the links provided by RobWill to set those.



I understand the above but when I put my external IP address in by browser i simply set the sonic wall management console. How do I get it to forward by address w.x.y.z/exchange to my servers internal address w.x.y.z/exchange?

Do I not need to set up a forward (access) rule which using an external ip and port to forward to internal ip and port?

In short how do I get my sonic wall to distinguish between the external IP being for management or accessing OWA.

I figured once I have this working with IPs I can then configure DNS.

Any advise welcome
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Please click on the "ask a related question" link just above the comment box below to ask your question.



Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now