Solved

Accessing OWA inside the firewall

Posted on 2009-04-13
9
284 Views
Last Modified: 2012-05-06
My company has a website with a  link to our Exchange server OWA https://mail.company.com/exchange.  This works fine if you are outside the firewall, but you cannot access it if you are inside the firewall. You must use the private FQDN servername/exchange. It would be nice to set DNS to allow this. I read the posts about how to do this, but I'm still confuded.
0
Comment
Question by:llhuff
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 65

Expert Comment

by:Mestha
ID: 24133721
Split DNS.
You need a zone on your internal network for example.com, with the zone populated with the public IP address of your public web site and the internal IP address of your Exchange server.

http://www.amset.info/netadmin/split-dns.asp

Simon.
0
 

Author Comment

by:llhuff
ID: 24138881
I set up a new DNS zone "example.com" with host As for "mailmx" using both pubilic and private IPs. Now I am unable to open our public website "example.com" inside the firewall and still cannot access "mailmx.example.com"
0
 
LVL 65

Expert Comment

by:Mestha
ID: 24140367
As my instructions stated, you need to replicate what you have in your public DNS. That means if you access the external web site with www.example.com then you need to add an entry for www in that zone and enter your public IP address. If you are accessing the public web site with example.com then you need to create a new A record with a blank host and put in your external IP address.

Does the host name that you entered actually resolve? If you ping mail.example.com does it respond with the internal IP address of the Exchange server?

Simon.
0
Why You Need a DevOps Toolchain

IT needs to deliver services with more agility and velocity. IT must roll out application features and innovations faster to keep up with customer demands, which is where a DevOps toolchain steps in. View the infographic to see why you need a DevOps toolchain.

 

Author Comment

by:llhuff
ID: 24141714
Yes, the "www" host does take me to the public website now, but the "mailmx" host still times out.
Ping of "mailmx.example.com" recieve reply from public IP
New DNS forward zone
example.com
          www = public IP xxx.xxx.xxx.xxx
           mailmx = pvt IP xxx.xxx.xxx.xxx
0
 
LVL 65

Expert Comment

by:Mestha
ID: 24142629
Have you attempted to use hosts files or anything that could override the DNS entry?
Do you have more than one DNS server? Is the zone on all of them?

Simon.
0
 

Author Comment

by:llhuff
ID: 24148167
I cleaned out the hosts file just "127.0.0.1" now but it made no difference.
0
 
LVL 65

Expert Comment

by:Mestha
ID: 24150626
The host still doesn't resolve correctly?

Simon.
0
 

Author Comment

by:llhuff
ID: 24151012
I tried several hosts file entires, but no luck.
0
 
LVL 65

Accepted Solution

by:
Mestha earned 500 total points
ID: 24156649
You shouldn't have any hosts files entries.
You aren't using a proxy server in Internet Explorer by any chance? That could cause a problem like this.

Just to be clear, you have created an entry in the dns zone for the host name, type A, so that you have an entry for host.example.com, which is pointing to the internal IP address of the server? This shouldn't be that difficult to get working, unless there is something odd about the DNS configuration of your network.

Simon.
0

Featured Post

[Webinar] How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
Check out this step-by-step guide for using the newly updated Experts Exchange mobile app—released on May 30.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question