SBS 2003 OWA not working with external address


I’ve got a server running SBS 2003 and I’ve just installed a SSL certificate for and externally the certificate works fine and I can access OWA through  If I go to this address internally it doesn't work. if I go to http://servername/exchange it loads OWA fine.  I've done a bit of research into how to get the same address https://remote.domainname/exchange working internally and externally and there's a few forum posts which talk about setting up split DNS, I've followed a couple of guides and cant quite get it working correctly.

If anyone could assist that would be greatly appreciated.

Who is Participating?
footechConnect With a Mentor Commented:
Are you using SBS Premium (w/ ISA installed) or just standard? If using ISA, there are some additional steps you can take to deal with certificates so you don't get a warning, but they're not 100% necessary.

Is your internal (Active Directory) domain name the same as your external name used to access your public IP from the internet?

If not, open the DNS Management console, create a new Forward Lookup Zone.  Use Primary, AD integrated, replicate to all DNS in domain.  Name it "".  Then create a new A (host) record in the zone, leave the name blank (for "same as parent") and enter the internal IP of your SBS.  By naming the new zone "" instead of "", queries for other subdomains of (e.g. will still be able to be resolved by DNS records available on the internet instead of having to create these records manually.
Why is it necessary to have the external address work internally at all?
You wouldn't normally use secure HTTP  to access your Exchange server from the LAN, which may be part of the problem.

As the internal and external methods you described both work, why not just set up appropriate shortcuts on the users' browser toolbars so that they can select whichever one fits the circumstances?
systemagicAuthor Commented:
The reason I want it to work internally and externally is because of mobile devices such as iPhones, they are used in the office connected to wifi and also outside the office so need to be setup with the same address in the email config.
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

systemagicAuthor Commented:
I have another client server which are also sbs 2003 and have the same type of ssl, it was setup a while ago but if I go to from inside and outside the network it loads fine and mobile devices work fine.  So I know it can be done, I've gone through and compared the dns settings, iis settings and site bindings and can't see any differences so I'm not really sure why it works fine for one client but not the other.
systemagicAuthor Commented:

its not premium just the standard version.

I've setup the Forward lookup zone and A record as you have asked and that's now working fine :) I'm sure I tried that before and was getting a username and password pop up when trying to access the site but I must have done something wrong

Thanks for your help :)
Glad I could help.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.