Solved

SBS2011 OWA Issue: Cannot access OWA from thw web

Posted on 2013-11-12
11
613 Views
Last Modified: 2013-12-09
Hi Experts

I cannot access OWA or the default server website from the internet.
Internally everything is ok.  We are using a Draytek 2860 router.  Ports 25,80, 443, 987 are open (based on canyouseeme check).  These ports are redirected to server IP via NAT.  I have rerun " Setup your internet address" wizard again and it has run successfully.  Any suggestions most welcome.  Thank you in advance
0
Comment
Question by:freshfordian
  • 7
  • 2
  • 2
11 Comments
 
LVL 16

Expert Comment

by:Shaik M. Sajid
ID: 39643775
are yo uable to telnet those ports with the external IP ?
0
 
LVL 1

Author Comment

by:freshfordian
ID: 39643784
No.  telnetting from internet is not enabled on router. Windows firewall is still operational on server.
0
 
LVL 16

Expert Comment

by:Shaik M. Sajid
ID: 39643790
disable the window firewall or create exception to the related ports in windows firewall.. all the best
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 22

Expert Comment

by:David Atkin
ID: 39644024
What happens when you browse to the OWA?  Can you access the remote page?  Any errors / warnings in the event logs?

External DNS Setup correctly?
0
 
LVL 1

Author Comment

by:freshfordian
ID: 39647842
What happens are the following:

1. when I browse the external address (mail.mycompany.com/owa) is a 404 not found error: - The requested URL was not found on this server or page cannot be displayed

2. I get the same error when I enter mail,mycompany.com. The URL changes to https://mail.mycompany.com/remote and displays the same 404 error or Page cannot be displayed

3. If I enter the IP address of mail.mycompany.com I get the IIS7 Page.  



This looks like a DNS Error! Am I right? How can I correct it?
0
 
LVL 1

Author Comment

by:freshfordian
ID: 39648408
Other INTERNAL Checks as follows:

http://localhost/remote ................. OK
http://localhost/owa........................ OK
http://192.168.0.4/remote.............. OK
http://192.168.0.4/owa.................... OK

http://mail.mydomain.com ............ OK (redirectd itself to remote)
http://mail.mydomain.com/owa..... OK

Internal systems seem fine,
0
 
LVL 22

Expert Comment

by:David Atkin
ID: 39648455
It sounds like either your router isn't forwarding the ports corerctly or you have an external DNS issue.

Rather than opening the ports on the Draytek, try doing a port re-direction and try again.

Ping mail.mydomain.com from outside of your network and confirm it is resolving to the correct IP address
0
 
LVL 1

Author Comment

by:freshfordian
ID: 39650370
Hi
Pinging mail.mycompany.com is successful.
I have port redirection setup on the Draytek for a number of ports for other applications including port 25.  The recommended ports (25,80,443,987,1723) are all redirected to the server iP.  

For example, I the following apps are working fine:
http://mail.mycompany.com:8080/ePortal
http://mail.mycompany.com:8081/media
whereas
http://mail,mycompany.com/owa: Bottom left hand corner of browser window message "Establishing Secure Connection..." then "Webpage is not available.  As outlined above, internally all is ok. It looks to me to be a possible IIS issue?
0
 
LVL 1

Author Comment

by:freshfordian
ID: 39650386
Some additional Info:
I ran an Remote Connectivity Analyser test.  Results are attached.  

Testing RPC/HTTP connectivity.
       The RPC/HTTP test failed.
       
      Additional Details       
Elapsed Time: 6515 ms.
            Test Steps
       
      Attempting to resolve the host name mail.mycompany.ie in DNS.
       The host name resolved successfully.
       
      Additional Details
      Testing TCP port 443 on host mail.mycompany.com to ensure it's listening and open.
       The port was opened successfully.
       
      Additional Details
      Testing the SSL certificate to make sure it's valid.
       The SSL certificate failed one or more certificate validation checks.
       
      Additional Details
       
Elapsed Time: 5646 ms.
       
      Test Steps
       
      The Microsoft Connectivity Analyzer is attempting to obtain the SSL certificate from remote server mail.mycompany.com on port 443.
       The Microsoft Connectivity Analyzer wasn't able to obtain the remote SSL certificate.
       
      Additional Details
       
The certificate couldn't be validated because SSL negotiation wasn't successful. This could have occurred as a result of a network error or because of a problem with the certificate installation.
Elapsed Time: 5624 ms.

This appears to narrow down the problem. Any advice from here would be most welcome,
Thank you
0
 
LVL 1

Accepted Solution

by:
freshfordian earned 0 total points
ID: 39697724
Hi All

Decided to abandon exchange in favour of Google Apps for Education. No issues since.  I do appreciate your input.  Many thanks.
0
 
LVL 1

Author Closing Comment

by:freshfordian
ID: 39705747
There was no apparent solution forthcoming.  We chose in the end to move away from inhouse exchange to a the cloud-based Google Apps for Education.  I do appreciate thr tips provided but I don't know of any other way to close the question fairly?
0

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Add Email to my Outlook of another AD User 23 42
Change SBS 2011 Internet Domain Name 3 56
how to compare 2 PST files? 3 124
IPV6 Issues 3 29
Written by Glen Knight (demazter) as part of a series of how-to articles. Introduction One of the biggest consumers of disk space with Small Business Server 2008(SBS) is Windows Server Update Services, more affectionately known as WSUS. For t…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question