Link to home
Create AccountLog in
Avatar of mcse2007
mcse2007Flag for Australia

asked on

Blackberry inbound issue

Hi,

My client has Blackberry Bold 9700 with push email enabled. She has Microsoft Exchange server running in the office which does sync with her Blackberry. There is no Blackberry Ent. Server in the premises. So I'm not precisely sure how did the last engineer setup the synchronisation between Microsoft Exchange and with BB 9700,

I've recently change their firewall and created "port forward" port 3101 (external) to 3101 (internal) pointing to the IP address of Exchange.

But, the issue is her Blackberry is not synchronising with her MS Oultlook, that is she is getting her email in MS Outlook but nothing on her BB 9700.

Is there any other port that I should open or port forward to MS Exchange?

Appreciate any help.
Avatar of Pete Long
Pete Long
Flag of United Kingdom of Great Britain and Northern Ireland image

Blackberry wont talk to exchange unless

1 You have a BES server
2. You have Blackberry Express installed
3. Your Blackberry ptovider probers this by conencting its server to your outlook web access and then THEY forward the users mail to them

TCP port 3101 is requires for BES? so you either have a BES/BES express server ot youve wasted your time.
Hi mcse2007,

My info does not answer the port question but it explains how the BB 9700 gets exchange mail without the BES solution. might assist in troubleshooting

My Blackberry (9700) is able to retrieve e-mail from our Exchange 2010 and I'm NOT on the BES solution.
My Blackberry runs OS6. In the setup option select "Email Accounts". Proceed to "Internet Mail Account"
Your phone will probably look for updates at this stage. Once that step is complete select "set up another account" Select "other" in the account types. Enter the e-mail address and the AD password in question. proceed and select continue. This step will fail. You will then have the option to provide additional options. Select outlook web access and provide the Exchange OWA link: https://yourdomainname.exchange.com/owa for example. Also ensure to add the correct corresponding AD info as requested.


Thus concluding that a "BIS" enabled Blackberry should be able to obtain e-mail as long as the OWA is operational. Other than that, I don't know.

Good luck, HTH
just note that the OWA only enables mail delivery both ways, no other exchange features are operational - calender sync and contacts.
> There is no Blackberry Ent. Server in the premises. So I'm not precisely sure how did the last engineer setup the synchronisation between Microsoft Exchange and with BB 9700,
 
like @PeteLong said I;ll be also betting that her phone carrier has a portal that you use to put in the OWA details. The carrier checks the email and then delivers it to the phone OR her exchange account is set to forward her BB email address.

> I've recently change their firewall and created "port forward" port 3101 (external) to 3101 (internal) pointing to the IP address of Exchange.

Even if they had BB Server, 3101 is only required outbound. Remove this.

Avatar of mcse2007

ASKER

port 3101 is bidirectional?

Interesting about the probing. They had some issue with their MX record few days ago but I managed to sort this out...so inbound emails are flowing back into their Exchange server. In the firewall, I've also created port forward SSL 443 to their Exchange for OWA. BTW, my client is using EX2007.

I've just logged into their control panel through their web hosting provider, and their MX record is correctly setup.

Would your MX record can also be used to access your OWA? For instance, their MX record is mail.domain.com.au which points to their public IP address of their firewall.

From inside their LAN, I can access their OWA through https://mail.domain.com.au/owa 

their External MX record is mail.domain.com.au so in theory, I should be able to access their OWA from the public network, given the port forward 443 points to their internal Exchange which was done inside the firewall?

Also, is it possible that your public MX record is different to your internal MX record and still can access your OWA from the public network? OR, your public MX record and internal MX record much match in order for you to access OWA from the public internet?
Check the settings in the blackberry console provided by their carrier. This will peobably show you what DNS resords that was setup for.
Hi,

Is ActiveSync enabled? She could be using something like AstraSync?

Regards,


RobMobility.
Hi mcse2007

Our internal and external records differ. Internal is https://exchangeservername.domain.com/owa and external is https://exchangeservername.domain.co.za/owa and both work.
@ aoakeley, ok, i'll find out tomorrow on my site visit.

@RobMobility, not sure, this too i'll find out tomorrow.

@ Moomin83, ok thanks.

When I asked my client, when was the last time her BB has sync with her MS Outlook, she said it was Friday...which was the day I've changed their firewall. BUT, I configure SMTP (port 25) and SSL (port 443) on the port forwarding menu from the firewall...that should be enough to route both those protocol to their Internal Exchange server.

So i'm not sure where the issue lies at the moment.
> I configure SMTP (port 25) and SSL (port 443)
unless the BB was checking using POP?
Hello All,

Right, been on site today for few hours of troubleshooting...but the problem still not being resolved....the following were troubleshooting been done:

I've checked from the advanced options from BB user's email configuration, sure enough, it is using
https://mail.domain.com.au/owa.  

From the Exchange server, I checked the External address of OWA,  it matched what's on the BB user's email configuration, that is https://mail.domain.com.au/OWA.

From the new firewall> port forward, port 443 and 4443 are being forwarded to the MS Exchange server. But, even with this port forward, the sync between the BB handheld, and MS Exchange does NOT happened.

I'm suspecting that when the user's Blackberry phone provider route their email to my client's web access mail, it is using different PORT number and not the standard port 443. Is that possible?????

ALSO, is it possible to customise OWA port number from the Exchange server? I cannot see such what port number from the new firewall  is being used when I tried connecting to https://mail.domain.com.au/OWA using my phone's internet service because there is no on time log report.

After spending few hours of fruitless troubleshooting, in the end I have reinstate their old router.

The only thing that i have not done is to contact the user's Blackberry phone provider and ask them which port number that they used when they route the inbound emails to my client's firewall which I should have done. Anyway, I will call them tomorrow and find out.



> After spending few hours of fruitless troubleshooting, in the end I have reinstate their old router.

if it is working with the old router can't you log on and see what ports are forwarded?
their old router was cisco...I did logon into it and all I seen apart from all bunch of access-list were protocol SMTP, HTTP, port number 443, 80, 587 and cannot remember the others since the config is huge.
Ignore most of the config, all the port forwards will be in one section together and look something like this

ip nat inside source static tcp 192.168.0.10 3389 interface Dialer0 3389

192.168.0.10 will change depending on the internal IP that traffic is being forwarded to
Dialer0 may be eth0 or something else depending on the rype of WAN connection
oops pressed submit too soon

ip nat inside source static tcp 192.168.0.10 3389 interface Dialer0 3389

3389 in the line above is the port number (inside port then outside port)
@ RobMobility, they don't use ActiveSyn rather https://mail.domain.com.au/OWA which is configured through her BB 9700
http://www.astrasync.com/ was what was being referred to by RobMobility

Allows bb to activesync
ASKER CERTIFIED SOLUTION
Avatar of Mike Sullivan
Mike Sullivan
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer