Need some guidance please correcting the following.
First I have an sbs2003 R2 Premium box with isa 2004.
I pop my mail and via pop3 connector using address mail.domain.com.au (although will change to smtp after resolving this, one step at at time please) and host my website externally at my isp www.domain.com.au
Further to that I have a dns entry (external) office.domain.com.au which pints to my ip address (adls router).
As such I can get rww and owa until now. I was previously using a self signed cert called publishing.domain.com.au
Furthermore I can no longer access my website or pop my mail.
So this is what we did.
1. Today (with assistance) I used isa to request a certificate and and subsequently purchased a trustico ssl
2. Imported the cert via isa
3. Created a new zone in my local dns of domain.com.au (I already have a domain.local)
4. Created a new A record in that zone office.domain.com.au and pointed it to my internal ip address
This meant that https:\\office.domain.com.au/remote
resolves bow both externally and internally with a cert. BUT now I cannot access my website or exchange pop my mail as obviously these no longer resolve from my lan
Further to this when I rerun the ICIEW wizard it populates my isa rules with publising.domain.com.au and subsequently I have to manually change this back to office.domain.com.au to get owa and rww working again.
Now where I think we went wrong is not using ICIEW to import the SSL in the first instance.
If I had of done this would I have needed to add a new dns zone just to get office.domain.com.au to resolve. internal resolution is not important, external is?
If I read the article. http://technet.microsoft.com/en-us/library/cc949119(printer).aspx
it suggest that I used isa to create the cert (which i did) and ICIEW to import. My theory was to run the ICIEW again and import the ssl cert but because I have already done this using isa without the wizard I cannot proceed.
Now I am not sure that If I place another certificate request using isa that I will lose the cert I have purchased. (I am getting over my head here) because was it not the original cert request that I cut ad pasted when purchasing earlier today. Or can I just remove via isa the purchased ssl, create a new request and then import the certificate again.
Any clarification on this would be appreciated. If anyone knows the answer I know here is the place to find it.