Solved

SSL Certs and IP addresses?

Posted on 2013-11-04
8
184 Views
Last Modified: 2013-11-14
We have 2x sites with an exchange 2010 box @ each site.  ASite A and B

Site A has all production mailboxes, site B has none but both are configured the same settings in case we need to utilise site B.

Both have the same CAS and SSL cert installed.  We believe the server at site b is accepting the SSL EAS requests.

I want to either force production server to handle these requests.

Can i achive this?  Where does the external IP address (in our case a firewall) reside?  In the SSL cert or exchange?

Thanks
0
Comment
Question by:CHI-LTD
  • 5
  • 3
8 Comments
 
LVL 1

Author Comment

by:CHI-LTD
ID: 39621280
To confirm on a test i see:

      The Microsoft Connectivity Analyzer is testing Exchange ActiveSync.
       Exchange ActiveSync was tested successfully.
       
      Additional Details
       
Elapsed Time: 9815 ms.
       
      Test Steps
       
      Attempting to resolve the host name mail.domain.co.uk in DNS.
       The host name resolved successfully.
       
      Additional Details
       
IP addresses returned: external IP address Site A, External IP address Site B
Elapsed Time: 124 ms.
0
 
LVL 14

Expert Comment

by:Ram Balachandran
ID: 39621286
You need to check with your network team if any Load Balancer is configured to route the traffic to Site B, in that case it need to be blocked
0
 
LVL 1

Author Comment

by:CHI-LTD
ID: 39621293
There isnt.  Both are in the same domain, over a VPN connection.
Trying to find out where the external ip addresses are stored?  SSL cert?  DNS?
0
 
LVL 14

Accepted Solution

by:
Ram Balachandran earned 500 total points
ID: 39621301
It  will be in router and then accessed by DNS
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 14

Assisted Solution

by:Ram Balachandran
Ram Balachandran earned 500 total points
ID: 39621311
Also, external IP address will be with Vendor/Service Provider from where you purchased IP addresss .  
Outside DNS will need to point to the address your ISP has given you on the outside.

Your MX Record needs to be the server that is going to receive your emails, in your case if GoDaddy is going to receive it and forward it to you, then it should be their IP Address and GoDaddy folks needs to be provided the internet facing IP of your firewall / router

Refer :

http://forums.msexchange.org/Which_IP_address_to_be_used_in_Exchange_server_(_External_IP_or_Internal_IP_)_%3F/m_1800562438/tm.htm
0
 
LVL 1

Author Comment

by:CHI-LTD
ID: 39621324
ah yes, DNS on our domain....

With 123reg..
0
 
LVL 1

Author Comment

by:CHI-LTD
ID: 39621349
Is there a way to prioritise the way in which EAS on device setup accesses mail.domain.com from external into our network(s) as it seems to be talking to the backup server?
Must be site a then site b.
0
 
LVL 1

Author Closing Comment

by:CHI-LTD
ID: 39648463
found that there was a dns entry in there for the 2nd server which couldnt then connect to the other exchange server...
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now