[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 160
  • Last Modified:

Exchange OWA and Outlook access over WAN don´t work nearly every day. Outlook via LAN works fine

HI,

nearly every day we are not able toaccess the exchange over OWA or by using Outlooks outside the LAN. Restart the Exchange-services don´t help. There are no helping entries in the eventlog. If i make a "iisreset /restart" everything works fine till next time.
We have a SBS2008 with Exchange2007. All Updates are installed.

Any idea ?
0
loosain
Asked:
loosain
  • 4
  • 3
  • 2
2 Solutions
 
tshearonCommented:
Are you using any sort of mail firewall or anti-spam that could be eventually killing it after IIS restarts?
0
 
loosainAuthor Commented:
There is Kaspersky installed. Customer wants so...
Antispam there is nothing. Firewall only KAspersky. But it works for ours and then it stops. So i think this couldn´t be a firewall-problem, o could it ?
0
 
tshearonCommented:
It very well could be. Have you checked the Kapersky logs there when it stops? If it works internal but not external then I would assume there is some sort of firewall/port issue gumming it up.
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
Adam FarageEnterprise ArchCommented:
Its most likely a firewall issue, try turning off Kaspersky for a moment and then testing the HTTPS connection (Outlook Anywhere / Outlook Web App). Furthermore when it is not working I would look at services.msc and make sure IIS is running.

You should look to see if (when the issue is occurring) that the server is binding over TCP 443 by using netstat -anp. If it is, and its available then look at the Kaspersky settings to make sure that it is actually allow TCP 443 through. Local Firewalls are a nightmare for Exchange, but its most likely (by default) disabling TCP 443. Furthermore, check to make sure that Kaspersky is not doing HTTPS inspection (if it even does that).

Last thing but not least is to check the actual Antivirus exclusions. That is a lot to cover, but they are listed below:
http://technet.microsoft.com/en-us/library/bb332342%28v=exchg.141%29.aspx

There is absolutely no exception for these exclusions, and they must be applied.
0
 
loosainAuthor Commented:
Sorry its been a while. The problem ist still there. We have already uninstalled antivirus. I made a netstat with this interesting output:


 Es konnten keine Besitzerinformationen ermittelt werden.
  TCP    192.168.2.250:443      tmo-113-94:11611       HERGESTELLT

 Es konnten keine Besitzerinformationen ermittelt werden.
  TCP    192.168.2.250:443      ipservice-092-209-079-174:62827  SYN_EMPFANGEN

 Es konnten keine Besitzerinformationen ermittelt werden.
  TCP    192.168.2.250:443      ipservice-092-209-079-174:62828  SYN_EMPFANGEN

Any idea what this could be ?
0
 
Adam FarageEnterprise ArchCommented:
English conversion ? :)
0
 
loosainAuthor Commented:
 Es konnten keine Besitzerinformationen ermittelt werden

Means

there could no information be found about
ownership

Hergestellt = connected

Syn_empfangen = syn_received

there are two services listening on local port 443 it looks like for me. Or am i wrong  here?
0
 
Adam FarageEnterprise ArchCommented:
That looks wrong honestly. Run the following and post it up here (just pre-translate it, I have yet to find a decent translation program online that is actually correct)..

netstat -anp > C:\Netstat.log
0
 
loosainAuthor Commented:
Those programs where ok. I realized that Sharepoint services throw errors every 3 seconds because the db of sharepoint was killed in former times. We dont use sharepoint. So i uninstalled sharepoint services and from this everything was fine...
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 4
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now