vphul
asked on
Outlook Web App working on internal network but not from an external network
Hello,
I'm setting up an Exchange 2010 infrastructure, and am in the lucky situation of having four Exchange servers. My company has a single domain and one site. Two of the servers are running the Client Access Server and Hub Transport roles, and the other two servers are running the Mailbox roles and a DAG. I'm using Windows Network Load Balancing on the first two servers and a CAS array. Connecting to https://mail.domain name/owa works fine internally, but I can't get it to work when connecting from an external network - the OWA login page won't display. I've checked the firewall settings, and been in touch with the firewall provider who has confirmed that the packets are correctly being forwarded to the CAS array.
Can anyone help?
I'm setting up an Exchange 2010 infrastructure, and am in the lucky situation of having four Exchange servers. My company has a single domain and one site. Two of the servers are running the Client Access Server and Hub Transport roles, and the other two servers are running the Mailbox roles and a DAG. I'm using Windows Network Load Balancing on the first two servers and a CAS array. Connecting to https://mail.domain name/owa works fine internally, but I can't get it to work when connecting from an external network - the OWA login page won't display. I've checked the firewall settings, and been in touch with the firewall provider who has confirmed that the packets are correctly being forwarded to the CAS array.
Can anyone help?
ASKER
Hello Works2011,
The authentication for Outlook Web App is set to Use forms-based authentication, and Logon format is domain\username.
The servers are running Windows 2008 R2.
The authentication for Outlook Web App is set to Use forms-based authentication, and Logon format is domain\username.
The servers are running Windows 2008 R2.
what error do you get from your browser, is it access denied? Please show screen shot or provide info.
ASKER
I get Internet Explorer cannot display the webpage.
have you got all the updates for IE, cleared cache and tried another computer with IE. Could reset as well. Usually if the problem is with IIS you get an HTTP error, doesn't sound like IIS is kicking back the request sounds more like IE not resolving.
None of the errors show up on this page.
None of the errors show up on this page.
ASKER
I've tried it on my Android smartphone, and it doesn't work on that either when using different wireless networks. There are no error numbers in IE at all.
ASKER
I've also tried another laptop, and Google Chrome, and still no luck. :-(
I had an error like this and the problem was with the firewall, IIS errors are often reported with an access denied / http error meaning the content is passed through to IIS, I'm not confident all the data is getting to IIS. As well without the firewall (internal) it's working fine.
ASKER
Thanks Works2011 for all your advice. We have Watchguard firewalls, and I'm going to contact Watchguard again about this matter.
ASKER
Watchguard advised me to run Wireshark on the CAS array servers. It seems that https traffic from an external network is reaching them, but not being acknowledged. Please see screenshots of data captured when accessing https://mail.domainname/owa internally and externally.
External.docx
Internal.docx
External.docx
Internal.docx
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
By doing lots of research myself, I found the solution.
Do you have SBS or Server environment, IIS will be different in each. Either way if the above doesn't get the logon screen to show we'll move into IIS.