exchange, OWA,
I have primary site with domain: abc.mail.lan at ohio.
and one other AD site at Dayton as also domain.lan , I used OWA worked fine inside my office and outside my office that is at home for both these sites which are having forest relationship.
our squid proxy behind the firewall handles all the owa traffic which had hardcoded IP address to our exchange server which is at primary site.
but the other AD sites are having child -domain relationship with primary site from sites like phx.abc-mail.lan
and.abc-mail.lan .
when I used OWA using user mail box of one of the other AD sites like one is in phoenix internally from my primary site I can connect from inside to other AD sites from my primary AD site - but cant from home to those same AD sites which are having child domain relationship.
my question is:
If I connect to one of their AD sites through RDP from my office at primary AD site and do nslookup when on their exchange server to our owa address I get the proxy server ip reply.so how it is connecting internally in office fine and not from home
AD sites having forest relationship -owa works fine internally in office and outside office using same OWA URL defined in proxy squid server
AD Sites having child relationship -owa works fine internally in office but not from home.
do I need to create separate A record for those other AD sites like phy.abc-mail.lan /owa in my squid proxy server?
and one other AD site at Dayton as also domain.lan , I used OWA worked fine inside my office and outside my office that is at home for both these sites which are having forest relationship.
our squid proxy behind the firewall handles all the owa traffic which had hardcoded IP address to our exchange server which is at primary site.
but the other AD sites are having child -domain relationship with primary site from sites like phx.abc-mail.lan
and.abc-mail.lan .
when I used OWA using user mail box of one of the other AD sites like one is in phoenix internally from my primary site I can connect from inside to other AD sites from my primary AD site - but cant from home to those same AD sites which are having child domain relationship.
my question is:
If I connect to one of their AD sites through RDP from my office at primary AD site and do nslookup when on their exchange server to our owa address I get the proxy server ip reply.so how it is connecting internally in office fine and not from home
AD sites having forest relationship -owa works fine internally in office and outside office using same OWA URL defined in proxy squid server
AD Sites having child relationship -owa works fine internally in office but not from home.
do I need to create separate A record for those other AD sites like phy.abc-mail.lan /owa in my squid proxy server?
ASKER
my question is:
each AD site has its own autodiscover side, I can connect to all AD sites internally in office but not externally, what I am missing in my proxy squid config and how is it that I am able to owa internally ?
each AD site has its own autodiscover side, I can connect to all AD sites internally in office but not externally, what I am missing in my proxy squid config and how is it that I am able to owa internally ?
If you're connecting internally then you're not using proxy. I believe proxy it's been used for connections from inside to outside.
If you're connection from outside then you're using External DNS
If you're connection from outside then you're using External DNS
ASKER
we have proxy sqid server which has OWA and autodiscover url which directs traffic from external to internal.
So this is some kind of firewall.
Make sure you've published this Exchange on it.
Make sure you have port 443 and ports 143, 110, 25 rerouted from outside to Exchange.
Make sure you've published this Exchange on it.
Make sure you have port 443 and ports 143, 110, 25 rerouted from outside to Exchange.
ASKER
I am sorry sir you are still not able to answer my question
how can I owa into other AD sites sitting from my corporate site fine if I am not using proxy ?
but same I cant connect from outside my site
how can I owa into other AD sites sitting from my corporate site fine if I am not using proxy ?
but same I cant connect from outside my site
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
A record that will point to phy on your domain abc-mail.lan
A record that will point to autodiscover.abc-mail.lan
MX record phy.abc-mail.lan
Create CNAME (alias)
autodiscover.abc-mail.lan to phy.abc-mail.lan
In TXT record add your Exchange name
v=spf1 ip4:xx.xx.xx.xx a:phy.abc-mail.lan mx:abc-mail.lan ptr ~all
And make sure your Certificate installed on Exchange has 2 names inside
autodiscover.abc-mail.lan
phy.abc-mail.lan