SonicWall TZ180 Enhanced NATING

I have a TZ180 with enhanced OS. It has an SBS 2003 Server behind it and everything works great.  

I have an IPAd that I use both internally on the network and externally while travelling. The Ipad is using the URL remote.domain.com to access the exchange server remotely with no issues. When I am internal to the network on the WIreless LAN with the same IP subnet as the server, 192.168.10.x, the URL does not work when inside the network.  I have created a NAT rule below:

Source          trans     Destination           Server LAN IP   Services        
LANSubnets Original "WAN Primary IP" ServerPrivate ServerServices Original Any Any

I am able to Ping the URL and it comes back with the My SBS server responding so that NAT rule works. I have tried to create another rule for the server, but can't figure out the correct rule to do this. I have not modified any Firewall Access Rules and I have not created any routes.

The DNS server that controls the URL remote.domain.com is on the internet, so the SBS server doesn't do DNS for the external domain name.

Can someone give me detailed settings that I should put in the firewall.

COMTECNYAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

dosdet2Commented:
Try using   192.168.10.x/owa  
It may not be adding that automatically with the IP number.
Worth a try.
0
COMTECNYAuthor Commented:
If I change the URL to the local IP of the server, it works fine. I just want to make the firewall handle the Nat inside the firewall so the IPad URL.doesn't have to change.
0
Aaron TomoskySD-WAN SimplifiedCommented:
Does remote.domain.com resolve to the Wan ip exactly or to a different one in your group of wan ips?
0
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

COMTECNYAuthor Commented:
It resolves to my wan IP. I only have one IP.
0
digitapCommented:
You need to create a loopback. Try this:

Original Source: Lan Subnets
Translated Source: Public IP
Destination Original: Public IP
Translated Destination: Private IP of your SBS

Make sure Original Source is either LAN subnets or firewalled subnets. Also, if you use the Public Server Wizard to open ports on the firewall, it creates the loopback for you.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Aaron TomoskySD-WAN SimplifiedCommented:
As a rule I always start with the public server wizard just for this purpose. Then I change the services in the group to what I need.
0
COMTECNYAuthor Commented:
I will try digitaps suggestion.

Thanks
0
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.