Solved

Accessing OWA inside the firewall

Posted on 2009-04-13
9
238 Views
Last Modified: 2012-05-06
My company has a website with a  link to our Exchange server OWA https://mail.company.com/exchange.  This works fine if you are outside the firewall, but you cannot access it if you are inside the firewall. You must use the private FQDN servername/exchange. It would be nice to set DNS to allow this. I read the posts about how to do this, but I'm still confuded.
0
Comment
Question by:llhuff
  • 5
  • 4
9 Comments
 
LVL 65

Expert Comment

by:Mestha
Comment Utility
Split DNS.
You need a zone on your internal network for example.com, with the zone populated with the public IP address of your public web site and the internal IP address of your Exchange server.

http://www.amset.info/netadmin/split-dns.asp

Simon.
0
 

Author Comment

by:llhuff
Comment Utility
I set up a new DNS zone "example.com" with host As for "mailmx" using both pubilic and private IPs. Now I am unable to open our public website "example.com" inside the firewall and still cannot access "mailmx.example.com"
0
 
LVL 65

Expert Comment

by:Mestha
Comment Utility
As my instructions stated, you need to replicate what you have in your public DNS. That means if you access the external web site with www.example.com then you need to add an entry for www in that zone and enter your public IP address. If you are accessing the public web site with example.com then you need to create a new A record with a blank host and put in your external IP address.

Does the host name that you entered actually resolve? If you ping mail.example.com does it respond with the internal IP address of the Exchange server?

Simon.
0
 

Author Comment

by:llhuff
Comment Utility
Yes, the "www" host does take me to the public website now, but the "mailmx" host still times out.
Ping of "mailmx.example.com" recieve reply from public IP
New DNS forward zone
example.com
          www = public IP xxx.xxx.xxx.xxx
           mailmx = pvt IP xxx.xxx.xxx.xxx
0
Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 65

Expert Comment

by:Mestha
Comment Utility
Have you attempted to use hosts files or anything that could override the DNS entry?
Do you have more than one DNS server? Is the zone on all of them?

Simon.
0
 

Author Comment

by:llhuff
Comment Utility
I cleaned out the hosts file just "127.0.0.1" now but it made no difference.
0
 
LVL 65

Expert Comment

by:Mestha
Comment Utility
The host still doesn't resolve correctly?

Simon.
0
 

Author Comment

by:llhuff
Comment Utility
I tried several hosts file entires, but no luck.
0
 
LVL 65

Accepted Solution

by:
Mestha earned 500 total points
Comment Utility
You shouldn't have any hosts files entries.
You aren't using a proxy server in Internet Explorer by any chance? That could cause a problem like this.

Just to be clear, you have created an entry in the dns zone for the host name, type A, so that you have an entry for host.example.com, which is pointing to the internal IP address of the server? This shouldn't be that difficult to get working, unless there is something odd about the DNS configuration of your network.

Simon.
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now