Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Firewall & Sharepoint over SSL

Posted on 2010-09-08
Last Modified: 2012-05-10
Hi there

we're wondering what firewall settings we need to configure on firewall in order to access sharepoint over HTTPS.

The current situation is we can access Sharepoint application locally over HTTP and HTTPS (with self signed certificate and it's working fine). Firewall is currently configured so Sharepoint is accessible from outside over HTTP.

If we need to access Sharepoint over HTTPS from outside as well (via firewall), is it as simple as forwarding port 443 to the Sharepoint box or is there more to it (such as installing SSL certificate on the firewall ect)?

We're only looking for a generic answer not detailed firewall configuration.

Question by:cfpdev
  • 2
  • 2
LVL 20

Expert Comment

ID: 33627595
If sharepoint is the only thing accessible from the given outside ip address you now use for http (port 80), then yes forward https (port 443) and that should do it.

Author Comment

ID: 33627790
Hi there

thanks for response. Sorry it's not our office so I'm not entirely sure about the setup and configuration.

As far as I'm concern the public IP should be used only for the Sharepoint server (Inbound traffic) and it's probably used by internal users to generally browse internet.

What is possible (I'll check with those guys): they have internal Exchange server (I'm not sure if they use the same IP but I'll find out) so this could be the only other service exposed to public. Could this be a problem?

LVL 20

Accepted Solution

carlmd earned 500 total points
ID: 33628049
It sounds like they might have only one external ip address from what you are saying. If accessing this address with http puts you directly to the Sharepoint server, then it should not be a problem doing the same thing for https and port 443. Normally if they have multiple outside ip addresses then one might be assigned to only the Sharepoint server and another for say the normal web site server.

Any outgoing access would not pose a problem. Any outside access to other ports (smtp port 25, pop3 port 110 etc.)  is normal even with only one outside ip address. The only time you get into trouble is if you use say port 443 for Sharepoint and at the same ip address there was a sercure web server. Then there would be a conflict.

Author Closing Comment

ID: 33628083
I thought so. Thanks very much for prompt answer.

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
MAC address learning of Riverbed 4 66
Review of OCA certificate policy 1 29
Install SSL certificate on Cisco ASA 5506 6 48
Router question 5 26
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
Preparing an email is something we should all take special care with – especially when the email is for somebody you may not know very well. The pressures of everyday working life stacked with a hectic office environment can make this a real challen…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question