Solved

Problem to access mailbox from one sub-network since 1 day

Posted on 2011-09-06
21
323 Views
Last Modified: 2012-05-12
Hi,

I've got an annoying problem since yesterday.

I've got one network in 192.168.0.X and another in 192.168.42.0.
My exchange serveur (2003) is on 192.168.0.X network.

all is ok for the first subnetwork but for 42.X since yesterday impossible to use outlook.

I can access web access from http://192.168.0.9/exchange without problem...
But when i start outlook, normally it should ask for a password, now it do not.

If i try to create a new profile, when i put ip server adress and the name to search it says that it can't connect to exchange...(but i can ping and use OWA)

Thank you for your help
0
Comment
Question by:Kishkool
  • 13
  • 8
21 Comments
 
LVL 12

Expert Comment

by:Nenadic
ID: 36489914
What do you have between those subnets? Any form of firewall?
0
 

Author Comment

by:Kishkool
ID: 36490483
I've got a juniper firewall and a D-link switch.
0
 

Author Comment

by:Kishkool
ID: 36494048
But i've made no change on them, it's not the first time this problem come. Last time, It has come to work again with no change.

But this time it seems not to want to return...
0
 
LVL 12

Expert Comment

by:Nenadic
ID: 36494801
On the client computer, modify the c:\windows\system32\drivers\etc\HOSTS file by adding the following to the end:
192.168.0.9    <NAME OF EXCHANGE SERVER>.<AD-Domain>

For example:
192.168.0.9    exchsrv01.mycompany.local

You can use Notepad to open the HOSTS file.
0
 
LVL 12

Expert Comment

by:Nenadic
ID: 36494802
Sorry, then try to complete profile setup using the Exchange server name.
0
 

Author Comment

by:Kishkool
ID: 36495228
Thanks for your help but i've already tried this.

When i put netstat i've got
exchangeserver.domain.local:epmap SYN_SENT


If i launch OWA i've got
exchangeserver.domain.local:https ETABLISHED

(so it's work)

I'm lost...
0
 
LVL 12

Accepted Solution

by:
Nenadic earned 500 total points
ID: 36495925
It has to be down to the firewall then. Are you able to post firewall rules here?
We're looking for RPC ports specifically. If you have a firewall between Outlook and Exchange, RPC ports have to be configured statically.
0
 

Author Comment

by:Kishkool
ID: 36496443
set address "Bureautique" "proliant" 192.168.0.9 255.255.255.255
set address "technique" "technique-lan" 192.168.42.0 255.255.255.0

Ok so here my exchange serveur is add in group Bureautique.
Network who got problem is group technique (i'm 42.240)


set policy id 4 from "technique" to "Bureautique"  "Any" "Any" "ANY" permit
set policy id 4
exit

So all port is allowed to talk with Bureautique group, including my exchange

Any way, it was working last week and no change were done on firewall so...i don't understand.
I just can't communicate with "outlook autorisation service".. :(
0
 
LVL 12

Expert Comment

by:Nenadic
ID: 36496481
You need to be able to communicate with DC as well. Where is the DC?
0
 

Author Comment

by:Kishkool
ID: 36496610
DC is domain controller?

I have no active directory set for the moment.
I've got no domain when we log to computer, exchange server is a windows serveur.
I use it only for create mail user and some IIS service.
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 12

Expert Comment

by:Nenadic
ID: 36496706
Exchange cannot install without an Active Directory domain. So, you either have a Domain Controller or you had one. If you had one and now you don't - that's the problem.
0
 

Author Comment

by:Kishkool
ID: 36496837
Exchange still work (OWA, for other subnetwork).

Excuse me if i'm not clear, we 've got a subdomain : mycompany.local
It's all i can say. if i ping exchange.capitalvision.local it works...
0
 
LVL 12

Expert Comment

by:Nenadic
ID: 36496879
OK. So where is the DC for mycompany.local?
For testing purposes, are you able to open up all ports on the firewall between these two subnets - to remove firewall out of the equation?
0
 

Author Comment

by:Kishkool
ID: 36497060
Ok i've git all port open beetween subnet. Not working.

I just arrive i'm not sûre. I think this is exchange serveur but there is also a samba serveur. 192.168.0.10.

But all is accessible. It's amazing. And 2 days ago all was working great..
0
 
LVL 12

Expert Comment

by:Nenadic
ID: 36497071
Nothing in event logs in Exchange? System, Application, Security?
0
 

Author Comment

by:Kishkool
ID: 36497287
I'll look on it tomorrow and keep you inform.
Thks
0
 

Author Comment

by:Kishkool
ID: 36501165
Ok so my DC is my exchange server.

Where can i see event logs? I've got only tracking log.
Any way i've look everywhere and i've got not alert who explain my problem.
0
 

Author Comment

by:Kishkool
ID: 36501334
Ok...i've put company.local in server name then "find a name"
It asks me for the password (allelujah) but it doesn't want my password.

I've close and restart, and now i've got again can't connect to exchange server..
0
 

Author Comment

by:Kishkool
ID: 36501449
Ah !
Interesting thing.


I'ev got a DNS interne serveur : 192.168.21.1.

On subnet 192.168.0.X if i do

nslookup exchange

I got

Serveur :  srvdns.company.local
Address:  192.168.21.1

Nom : exchange.capitalvision.local
ip : 192.168.0.9

But on my 42.0 network i've got :


Serveur :  srvdns.company.local
Address:  192.168.21.1

srvdns.company.local can't find exchange : non existent domain...
0
 

Author Comment

by:Kishkool
ID: 36502094
Ok, the problem is resolved. It came from the firewall, even if everything was open there had also NAT rules that disrupted the port 135 (RCP exchange). Thank you for your help.
0
 

Author Closing Comment

by:Kishkool
ID: 36502100
Thank you
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

"Migrate" an SMTP relay receive connector to a new server using info from an old server.
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now