Solved

What settings (forwards) in my router need to be setup for Exchange 2013?

Posted on 2014-07-25
9
120 Views
Last Modified: 2014-08-07
Hi,

We have configured an Exchange2013 server and are moving the MX, A, and OWA records. What forwards need to be setup in our router in order for the External records to communicate to the server? (If any)
0
Comment
Question by:JRome225
9 Comments
 
LVL 25

Expert Comment

by:-MAS
ID: 40220798
Do you mean you upgraded old exchange to exchange2013?
Please elaborate. I am not clear
0
 
LVL 1

Author Comment

by:JRome225
ID: 40220801
No, we are bringing Exchange in house from Google Apps Mail.
0
 
LVL 25

Assisted Solution

by:-MAS
-MAS earned 250 total points
ID: 40220810
switch your MX records to Exchange public IP which is NATTED to the internal exchange server IP.
i.e. Change A record (e.g. mail.domain.com) IP to your in house exchange public IP.
When you change A record automatically MX will point to that IP.

You will access OWA with the same name. i.e. https://mail.domain.com/owa
To make sure it is working trying accessing OWA by public IP. (i.e https://168.187.252.212/owa)

Please check this as well
https://productforums.google.com/forum/#!topic/apps/2bDLammZoDI
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 40220818
Port forwards required are 25 for SMTP, to receive e-mail, and 443 for OWA.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 1

Author Comment

by:JRome225
ID: 40220821
I changed the MX and am getting 403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.

Also changed the port forwarding on the router for OWA to 80/80 to the internal. Are there any other port forwards that need to be setup?
0
 
LVL 1

Author Comment

by:JRome225
ID: 40220822
Not using a certificate..
0
 
LVL 1

Author Comment

by:JRome225
ID: 40220832
But also getting the 403 internally.
0
 
LVL 25

Expert Comment

by:-MAS
ID: 40221228
You have to do a port forwarding for 443 - 443
By default exchange will install a certificate (as part of installation).
Access owa by https://mail.domain.com/owa

or disable SSL on IIS and try http://mail.domain.com/owa (not recommended)
To disable SSL open the IIS Manager.
Expand the Sites and click on Default Web site:
Click on SSL Setting icons from the list and disable the Require SSL.
0
 
LVL 26

Accepted Solution

by:
skullnobrains earned 250 total points
ID: 40221585
ports used by exchange (may not be exhaustive)

things you definitely need

smtp : port 25 (do not change the MXs until at the very least this works)
owa : 80/443 w/o SSL (i'm unsure owa can work without ssl)

things you might need
from here on port/port means w/o SSL
client mush be read as a software (ie NOT owa)

IMAP/MAPI : 143/993 outlook clients send and receive, receive only for other clients
LDAP : 389/636 any clients that use ldap address books (including outlook)


things you probably don't need
submission : not used by exchange but you may map 587 to 25
smtps : 465

...lots of other stuff available in exchange documentations
do no try allowing rpcs
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now