Setting up FQDN for SBS Remote Workplace

Posted on 2008-11-07
Last Modified: 2012-05-05
I currently have SBS2003 (fictional ip's and domain names)
Server has static IP from comcast
DNS is handled by GODADDY
company website hosted somewhere else is

SBS RWW from the outside using IP address works fine
I registered to use RWW so people do not have to remember the IP
Created a A record =

this was setup a couple of days ago and still not working (again IP is fine), even tried a cname record with the same

go to get page cannot be found
what is strange is if I go to I get the cert warning as usual, but as soon as I click on "continue to site anyway" I get
Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)

Does comcast need to be involved since they own the IP? what might be the issue?
Question by:tkthelpdesk
    LVL 29

    Expert Comment

    by:Michael W is a private IP address like 192.168.x.x.

    A quick way to find out what IP address you are actually coming from is to do this:

    1) Login to the SBS 2003 server or any other workstation on the same network
    2) Open a web browser and goto ''

    IP Chicken will display the 'actual' IP address you are coming from.

    Since you are using Comcast, did they give you one of their 'business-class' modem/routers?
    LVL 6

    Expert Comment

    What to do there is to either :
    a) set port forwards on the Comcast router/modem.
    b)(preferred) Get a better Firewall/router device like a Sonicwall TZ170 or Watchguard X10e, and ask comcast support to "turn off routing because you have your own router"
    the ports that need to be forwarded are 4125 (remote web woprkplace), 443 (outlook Web access) and 25 (email delivery).
    Set all the port forwards to forward to the LAN IP of your server, which should be set to a static address so it will never change.

    You may want to consider having a company in to help you out if any of the things I mentioned here are unfamiliar to you.

    and of course as mentioned above, you need to know what your public IP is (Warning: it may change if you have comcast turn off routing)

    good luck.
    LVL 29

    Expert Comment

    by:Michael W
    This guide will definitely help if you have the Comcast Business-Class modem/router...

    Comcast Business IP Gateway User Guide

    Author Comment

    I currently have SBS2003 (fictional ip's and domain names)

    yes I know the IP, its a static IP non internal, its what I meant by fictional....

    server is on ISA, set with default SBS ports, comcast owns the router

    A record created at godaddy goes to public ip of server given by comcast
    CNAMe record created for  at godaddy to go to public ip of the server given by comcast

    I go to and get the cert warning, continue and

    Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)

    LVL 29

    Accepted Solution

    LVL 5

    Assisted Solution


    Are you still having issues?
    There are a few things to try
    Double check that Host Header Values for the Default Website are either empty or have your FQDN listed.
    To do this, load up IIS, right click the Default Website and go to properties. On the Website Tab, in the Web site Identification section, click on Advanced. Then you should have to lists.
    The top list is for non-secure (standard) http:// access. The bottom is for https: access.
    In the top section, check that you have a row that has the following:-

    1) Your INTERNAL IP Address (Internal because the server is behind a router and has no idea what its public IP address is or how to respond to it)
    2) Port 80
    3) The FQDN in the host header column

    If not, add it and try again.
    Also, check the bottom list has the internal IP address and port 443. Make sure you map port 443 through the router.

    Hope that helps.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    What Is Threat Intelligence?

    Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

    Suggested Solutions

    Title # Comments Views Activity
    Default web.conf for all sites. 5 36
    SMTP Question 3 55
    Mircosoft Exchange Server 12 32
    SBS 2011 corrupt database 3 38
    Because virtualization becomes more and more common, and, with Microsoft Hyper-V included in Windows Server at no additional costs, and, most server hardware nowadays is more than capable of running a physical Small Business Server (SBS) 2008 or 201…
    You may have discovered the 'Compatibility View Settings' workaround for making your SBS 2008 Remote Web Workplace 'connect to a computer' section stops 'working around' after a Windows 10 client upgrade.  That can be fixed so it 'works around' agai…
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
    Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now