Announcement

Collapse
No announcement yet.

OWA to Exchange 2003 and Zywall 5 firewall

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • OWA to Exchange 2003 and Zywall 5 firewall

    I have Exchange 2003 and am trying to setup OWA.

    I have a Zywall 5 that is using port 80 and 443 for administration.

    OWA works just fine within the intranet but I want it to work from outside.

    Specifically I need to have users using windows mobile on their cell phones to be able to access the mail.xxx.com to retrieve and send email.

    The DNS entry for mail.xxx.com is set to the external IP address.

    How do I go about doing this?

    Many Many thanks.

  • #2
    Re: OWA to Exchange 2003 and Zywall 5 firewall

    You will need to change the management ports for your firewall to an alternative port as by default IIS uses 80 and 443 for SSL. If you are using forms based authentication with OWA then you will need to open 443. If you prefer it without the encryption then you can use port 80. Create a rule on your firewall to forward the neccesary ports to your exchange server. You will then need to configure active sync on those mobiles to point to your public IP address or namespace. If you want to use SSL with active sync you will need a commercial SSL cert or you can create your own with self SSL or your own CA but you will need to install the cert on the phones. Addtionally out the box exchange also supports OMA on most basic WAP browsers. That too is also an option but not as robust as active sync.

    Comment


    • #3
      Re: OWA to Exchange 2003 and Zywall 5 firewall

      Just in case...

      if you are running single Exchange server and planning for FBA & Activesync.. then you might need to refer this KB article

      Exchange ActiveSync and Outlook Mobile Access errors occur when SSL or forms-based authentication is required for Exchange Server 2003
      http://support.microsoft.com/kb/817379

      Comment


      • #4
        Re: OWA to Exchange 2003 and Zywall 5 firewall

        Personally if i ever use OMA (which is rarely) i never bother with SSL. OMA is very easy to break, cached usernames are very difficult remove on mobile devices, generally its more agro than what the experience is worth. Its not surprising that its no longer supported or available in Exchange 2007.

        Comment


        • #5
          Re: OWA to Exchange 2003 and Zywall 5 firewall

          Ok, I got the zywall ports changed and ports now forward to website.

          BUT, here is my new problem.

          Internally I can connect to http://mail.blah.com/ and it redirects me to exchange as intended (I changed to redirect to exchange).

          Externally when I go to http://mail.blah.com/ I get nothing, says connecting....

          If I change the default website back to the 2003 default and remove the redirect I get the default page with links to conenct computer, help, etc. So, I know that DNS is working and that I am connecting to the site internally.

          BUT, I can't connect to Exchange.

          What am I missing here?

          Thanks,

          Tim

          Comment


          • #6
            Re: OWA to Exchange 2003 and Zywall 5 firewall

            Exchange is located in a subdirectory under default website in IIS. You must put the domain name and /exchange. IE: http://mail.blah.com/exchange. Remove the redirect for now and ensure you can access /exchange externally.

            Comment


            • #7
              Re: OWA to Exchange 2003 and Zywall 5 firewall

              I cannot access it without the redirect either.

              Whenever I type in https://mail.blah.com/exchange I get "connecting...."

              Same thing with http://mail.blah.com/exchange

              I can get to http://mail.blah.com/ConnectComputer

              I am apparently missing something...

              Thanks for your assistance, I really appreciate it.

              Comment


              • #8
                Re: OWA to Exchange 2003 and Zywall 5 firewall

                Also, my https is self issued, not sure if that plays a part in this or not.

                I went to godaddy to get a ssl cert but can't figure out which one I need.

                Again, not sure if that relates to my problem.

                Comment


                • #9
                  Re: OWA to Exchange 2003 and Zywall 5 firewall

                  The redirect is for http to https. Wether you use it or not you should still be able to access the URL if its typed correctly and you have the correct ports forwarded. Check the security settings in IIS to ensure that there are no restrictions on access for that subdirectory. (located under default site > exchange > directory security > IP address restrictions). That being said you should get a page indicating a restriction rather than "connecting" If you can get to /connectcomputer then you should be able to get to /exchange and that would indicate there is no routing issue. Is /connect computer accessible via http or https?

                  Comment


                  • #10
                    Re: OWA to Exchange 2003 and Zywall 5 firewall

                    Originally posted by macking View Post
                    Also, my https is self issued, not sure if that plays a part in this or not.

                    I went to godaddy to get a ssl cert but can't figure out which one I need.

                    Again, not sure if that relates to my problem.
                    SBS comes with its own self signed SSL certificate which is created during the installation process. You do not require a commercial one to enable SSL on exchange. It will work fine with the self signed one.That is done by default providing you have used the SBS wizards to do so.

                    Comment

                    Working...
                    X