Re: Activesync / Airsync - Alternative Ports

How about this. Setup a reverse HTTP proxy. On the device set the HTTP proxy
and set the connection type to "Work". Then on the PC have it accept the
requests and forward it to the server.



(Just an idea. I would thoroughly review the topology for security)


--
Carl Wolz [MSFT]
This Posting is provided "AS IS" with no warranties, and confers no rights.




"Andreas Wiatowski" <AndreasWiatowski@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message news:2E2616C0-F9EE-4730-B60F-4E595406D2FA@xxxxxxxxxxxxxxxx
Thanks Chris,

Thought of doing that, but they are blocking pptp too.

Plus, $10/mo. extra with cell company.

I was 'Praying' that there might be some hidden registry dwrod key or
something. Looks like in out of luck.

Thanks for all the great suggestions.

"Chris De Herrera" wrote:

Hi,
Another idea is to use the PPTP capabilities of a Windows Server to allow
you to connect and tunnel the 80 and 443 requests. The plus is that
Windows
Mobile 5.0 Pocket PCs and Smartphones support this. The downside is that
you have to subscribe for VPN access from your GPRS carrier.


--
Chris De Herrera
http://www.pocketpcfaq.com
http://www.tabletpctalk.com
http://www.pocketpctalk.com
http://www.mobilitytalk.com

ActiveSync 4.x Troubleshooting Guide -
http://www.pocketpcfaq.com/faqs/activesync/tshoot-as4x.htm

"Andreas Wiatowski" <AndreasWiatowski@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message news:41E10953-73B5-43B6-A34F-615B02989DA4@xxxxxxxxxxxxxxxx
I understand, I think it could work, but on the client side, we are
talking
about my Smartphone, going over the Internet over a Mobile operations
GPRS
network, not a Pocket PC using 802.** wireless.



"Chris De Herrera" wrote:

Hi,
What I'm envisioning is redirecting the ports with the firewalls. I
believe
that 2 Cisco PIX firewalls would work:

Client Side:

Pocket PC - Wireless - Access Point - Cisco Firewall - Satellite

Server Side:

Satellite - Cisco Firewall - Exchange Server

So on the server side you would configure the port 80 to redirect to
8888
(or any other port) via the firewall. Then redirect 443 to 4433 on
the
same
firewall.

Then on the client side, the firewall would receive the requests on
port
8888 and redirect them to 80 internally. Then redirect 4433 to 443 on
the
same firewall.

Does this make sense?

--
Chris De Herrera
http://www.pocketpcfaq.com
http://www.tabletpctalk.com
http://www.pocketpctalk.com
http://www.mobilitytalk.com

ActiveSync 4.x Troubleshooting Guide -
http://www.pocketpcfaq.com/faqs/activesync/tshoot-as4x.htm

"Andreas Wiatowski" <AndreasWiatowski@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote
in
message news:59BB32C1-3037-48AC-96D3-8CFF1F5D58B1@xxxxxxxxxxxxxxxx
The problem is that the request to 80 never hits my firewall. Heres
the
senario.

I have SBS / Exchange sitting on this High Speed Satellite link
behind
my
firewall.

I leave with my Smartphone, try to sync over the GPRS network via
myservername.domain.com but the request over port 80 can never hit
my
server
because the port 80 traffic is stopped before it can ever touch my
firewall.

I have another server with no exchange server (W2K w /iis) sitting
at
another site on the Internet. Could I hit that server or firewall
and
redirect the port 80 request to the server on port 8888? Don't
think
it
can
work... I tried setting up a IIS site and set a redirection to my
Echange
server on port 8888 and get nothing but errors.
"Chris De Herrera" wrote:

Hi,
If you wanted to throw hardware at it, you could probably setup a
firewall
on your side to reroute the requests for 80 and 443 to another
port,
send
it
via the satellite to the remote site and then reroute them with
another
firewall on the far end. This isn't cheap or easy but it should
work.


--
Chris De Herrera
http://www.pocketpcfaq.com
http://www.tabletpctalk.com
http://www.pocketpctalk.com
http://www.mobilitytalk.com

ActiveSync 4.x Troubleshooting Guide -
http://www.pocketpcfaq.com/faqs/activesync/tshoot-as4x.htm

"Andreas Wiatowski" <AndreasWiatowski@xxxxxxxxxxxxxxxxxxxxxxxxx>
wrote
in
message news:C661D421-043C-402A-88A6-C51A626FE233@xxxxxxxxxxxxxxxx
Unfortunately, not an option, I live in the country and there is
no
wireless,
cable or DSL options. Satellite is my only option for the
office.
Was
with
KU band Direcway, with public IP, no problems but very slow and
unreliable,
switched to KA band very reliable and fast for upload and
download.
Everything works fine for EXCEPT my Activesync for my smartphone.
I
am
currently using Pocket IE OMA and my server address on 4433 and
it
works.

Thanks for the suggestion though. ;.)

"Alan" wrote:


"Andreas Wiatowski" <Andreas
Wiatowski@xxxxxxxxxxxxxxxxxxxxxxxxx>
wrote
in
message
news:757AF005-D94E-4260-A342-AF6FB6B629DD@xxxxxxxxxxxxxxxx
My ISP blocks both ports 80 and 443. After trying several
configurations I
cannot get activesync to work on any alternate port other than
80
or
443.
(Tried server:port with no success, it still tries to connect
on
80
or
443
depending on my ssl setting) Does anyone know how I can get it
to
connect
on
a different port?

I am using a Motorola MPX220 smartphone. Tried changing
registry
key
HKCU\Software\Microsoft\AirSync\Connection\UseURIAsSupplied -
change
it
from
0 to 1

Seems like http is hardcoded to go to 80 for Airsync. Are
ther
any
other
reg keys that can be added to allow me to go through port 8888
for
http
and
4433 for https??

THanks

And the other option- change your ISP.














.

Relevant Pages

  • Re: How to Maintain an IIS Server?
    ... > server running on a Windows 2000 server. ... before a firewall and antivirus have been installed]. ... open ports; however, this will not identify which program is using the port. ...
    (microsoft.public.inetserver.iis.security)
  • Re: CEICW fails at firewall config
    ... ISA Server prevents connection to a remote desktop when you connect through ... Remote Web Workplace on a Windows Small Business Server 2003-based computer ... Acceleration Server as a firewall. ... connection uses TCP port 4125. ...
    (microsoft.public.windows.server.sbs)
  • Re: How to Maintain an IIS Server?
    ... >> server running on a Windows 2000 server. ... > before a firewall and antivirus have been installed]. ... > program or executable using that port. ...
    (microsoft.public.inetserver.iis.security)
  • RE: Is this as bad as it seems?
    ... The network being protected by the router or firewall is still vulnerable to ... > circumvented - the administrator has explicitly allowed HTTP traffic on ... this exploit has the effect of allowing the attacker to send *INBOUND* HTTP ... The HTTP server (located on the internal network or anywhere else that is ...
    (Security-Basics)
  • Re: Activesync / Airsync - Alternative Ports
    ... "Chris De Herrera" wrote: ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to 8888 ...
    (microsoft.public.pocketpc.activesync)