SBS 2008 unable to access Company Website or OWA from behind a TZ105W

Posted on 2013-11-18
Last Modified: 2013-11-20
The server is a SBS 2008, with an external website with exchange 2007.  The issue came about due to the customer wanting a faster VPN connection.  The previous setup was just a home edition linksys wireless router.  The company website was accessible from external IP addresses, and web-mail.
The sonic-wall was installed, the necessary rules were put in place such as RDP, and SMTP.  Well the users are able to send and receive emails, certain users can access email on their iPhones only, droid based phones unable to connect.  When you go to access the company website:  you receive the sonic-wall's log in information.
Question by:ttorno
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 22

Expert Comment

by:David Atkin
ID: 39656864
You're getting the SonicWall login because you need to redirect HTTP.  You need to forward the following ports on the sonicwall to the SBS:

80 (HTTP)
25 (SMTP)
443 (HTTPS)
987 (Sharepoint)
3389 (RDP - Personally I would not use the default port number though)

Expert Comment

ID: 39657231
Scorpeo is correct.  You need to map your port settings as suggested.

I have seen issues also where external names (e.g. where resolves to the Public IP address of the SonicWall or other router do not route the same behind the firewall as they would coming from the outside.   This can lead to issues with email and other services not working the same in the Office as they do from outside.

I can't tell from your question whether this is an issue or not for certain.
LVL 25

Accepted Solution

Diverse IT earned 500 total points
ID: 39657891
Hi ttorno,

The SonicWALL security appliance can be managed using HTTP (Port 80) or HTTPS (443) and a Web browser. Both HTTP and HTTPS are enabled by default. If you are using the SonicWALL WAN IP address for HTTP or HTTPS port forwarding to a server, then the default Management port must be changed to another unused port number (e.g. 8080, 444, 4443, etc.). You can change this under the System > Administration page.

In order to properly setup access for OWA and SMTP all you need to do is run the Public Server Wizard in the SonicWALL located in the top right corner which will automatically create all the necessary Access Rules, NAT Policies and Address/Service Objects.

I would strongly recommend against opening port 3389 (RDP); it's not a Security Best Practice for many exploitative reasons. The better solution would be to provide VPN access, then internally RDP (which needs no port forwarding on the firewall).

Let me know how it goes!

Author Comment

ID: 39659296
Thank you guys for all your comments, I originally configured the sonic-wall with the rules for email to pass through.  The other aspects were not mentioned to myself, and I was pulled off the protect.  I will pass the information on to my fellow technicians, and write back with the end results.

Author Comment

ID: 39659581
Once the management ports were changed then the OWA and the Share-point site all came up without having to add the port number on the end of the url.  Thank you everyone.

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit If you want to manage em…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question