Solved

OWA not working since installation of new sonicwall

Posted on 2007-11-29
27
264 Views
Last Modified: 2013-11-16
Hey guys,

I am running SBS03 and just installed a new SonicWall a couple of weeks back. Well, i noticed today that my OWA is not working now. Im under the assumtption that something is not configured correctly in the firewall.
I currently have the HTTPS rule showing the WAN going to my LAN address for my SBS03 box.
I have port 443 open.
I have port 80 open.
Any suggestions?? I am completely baffled!
0
Comment
Question by:sbodnar
  • 14
  • 13
27 Comments
 
LVL 12

Expert Comment

by:bhnmi
ID: 20375920
You have to change the SSL management port on the sonicwall to something other then 443 so that it works. Should be on the administration page under system.
0
 

Author Comment

by:sbodnar
ID: 20376042
Ok, Im looking under System, Administration and there is nothing that says SSL management but there is a section labeled Web Management Settings with a box check off next to HTTPS and the port assigned says 444. Is this what you are reffering too?
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376076
Yes, this is where you define the secure connection the management interface.  You are saying that it is already changed to 444? It doesn't say 443?
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:sbodnar
ID: 20376097
Exactly it says 444 not 443. Is that correct?
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376114
Thats great, this eliminates a possible conflict when trying access SSL pages from outside.
Did you already create a rule for HTTPS from WAN * * to  LAN x.x.x.x (address of the exchange server) ?
0
 

Author Comment

by:sbodnar
ID: 20376146
Yes there is a rule for HTTPS for  WAN * to LAN 192.168.*.*
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376164
Can you still access OWA internally? If you want to post the TSR you can download one from the diagnostics page under system.
0
 

Author Comment

by:sbodnar
ID: 20376199
No I cannot even access it internally. What is TSR?
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376225
Tech Support Report.

Well, I think you need to get it working internally and the we can deal with accessing it form outside. Is the Exchange server on the same subnet and VLAN as the sonciwall?
0
 

Author Comment

by:sbodnar
ID: 20376246
Yes it is.

Do you want  VPN Keys, ARP Cache , DHCP Bindings,IKE Info  ?
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376264
I was just wanting to look at the firewall rules, but I am thinking that it is probably configured correctly. IN the IIS manager on the exchange box, can you browse to the OWA interface?
0
 

Author Comment

by:sbodnar
ID: 20376283
Yes I can browse.
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376345
So it comes up? So you still cannot access it using the internal IP address from another machine?
0
 

Author Comment

by:sbodnar
ID: 20376361
using the internal it came up. If I use https://corp.xxxxxx.com/remote it does not.
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376385
You renamed the exchange folder in IIS to remote? and your FQDN resolves your public IP address correctly still right? ZGo ahead and post that TSR, you can edit it to remove what you feel is is sensitive information, but the more whole you leave it the better.
0
 

Author Comment

by:sbodnar
ID: 20376420
I have been using the remore extenstion since I came here and it has worked. I also use the extension "exchange" and that worked also and I see a folder in there named that and I can browse it. What is FQDN I am not sure what that is?

Should I pull everything on the TSR or only certain things?
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376463
Just post the whole thing.
0
 

Author Comment

by:sbodnar
ID: 20376499
Can I email it to you?
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376555
jeitzen@gmail.com
0
 

Author Comment

by:sbodnar
ID: 20376575
sent

thank you for your help!
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376756
It works. I can get to your OWA login page. The soincwall is not going to let route out and back in on your public interface. If you want to access it internally use the local address.
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376760
and I can get to the /remote page also.
0
 

Author Comment

by:sbodnar
ID: 20376791
Really? Hmmm.. I tried using a computer that is not on our network and it did not work... hmmmm maybe there is something wrong with the PC.
0
 
LVL 12

Expert Comment

by:bhnmi
ID: 20376831
I used the IP address of your WAN interface to get to it. If you email the hostname I will try that.
0
 

Author Comment

by:sbodnar
ID: 20376869
sent
0
 
LVL 12

Accepted Solution

by:
bhnmi earned 500 total points
ID: 20376888
Came right up.
0
 

Author Comment

by:sbodnar
ID: 20376905
Thank you for all your help!!!!

You helped me out greatly!
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
ASE reports it as spam 2 304
SRX240 SYSLOG Setting 6 110
My laptop is getting both a valid IP address and the broadcast address on this network 8 80
WAN Site Edge Routers 15 56
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

774 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question