Re: WM 5.0 and Sprint 6700 PPC-can't sync in cradle but can throug

Bruce

This setup may not be correct. In my case my remote access is through
mail.domainname.com. The correct setup is:
Zone Name: domainname.com
A Record: mail

I would not allow Dynamic Updates for security

The "mail" A Record should have IP Address = External facing Network Card
address eg 192.168.1.2

If you have an external website you will also need to setup an A record for
it such as:
Name: www
IP Address: The Internet IP address of your web server
Without this entry if you try to access your website from inside the network
you will not be able to access it.

When you have setup the entries clear the DNS cache by right-clicking the
server and selecting Clear Cache and also the local DNS cache on the server
by typing "ipconfig /flushdns" at the command prompt.
--
Regards

Doug


"B.Ras" wrote:

Hey Doug,
So I tried what you suggested but still no love.

Just in case I set it up incorrectly here is what I did on the SBS 2003
Server:
I created:
1. A primary zone
2. Under "Select how you want zone data replicated" I chose "To all
domain controllers in the Active DIrectory domain domainname.local
3. Forward Look Zone
4. For zone name I used remote.dominname.com
5. For Dynamic Update I chose "Allow both nonsecure and secure dynamic
updates"

6. for the A zone I left the NAME box blank and used the IP address of
the external LAN card.
7. I restarted the DNS service.

Any other suggestions?
Thanks,
Bruce


Doug wrote:
Bruce

I have had this problem with my own setup.

You need to setup a split DNS ie you need to setup a DNS entry on your
Internal server for your external address. Setup a new primary forward DNS
zone for the domain portion of externaladdress.com. Do not use active
directory integrated. Then setup A entries for the Internet server names e.g.
www, mail etc. If you have a website hosted externally ensure you use the
external website IP address. If you are using something like
mail.externaldomain.com use the external network card IP address for the IP
address. The result is that when your users are inside the communication ends
up comming back into the server as if it was comming in externally.

Hope this helps.
--
Regards

Doug


"B.Ras" wrote:

No, the external address won't ever work on the internal network. Is
there a modification that I should make in ActiveSync so that it can
sync when attached on the internal network?



Chris De Herrera wrote:
Hi,
Do you allow the internal staff to acccess the SBS server via the external
address? This is what address that the device is using because of the dns
cache on the device.


--
Chris De Herrera
http://www.pocketpcfaq.com
http://www.tabletpctalk.com
http://www.pocketpctalk.com
http://www.mobilitytalk.com

ActiveSync 4.x Troubleshooting Guide -
http://www.pocketpcfaq.com/faqs/activesync/tshoot-as4x.htm

"B.Ras" <b1dupree@xxxxxxxxx> wrote in message
news:1149857291.255584.30500@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Background
SBS Server 2003 SP1
ISA Server 2004
External NIC on server set to public IP address
SSL-Third party certificate set up and working externally using Turbo
SSL from godaddy
ActiveSync 4.1
Sprint EVDO for high speed wireless

------------------
I set up a Sprint 6700 PPC using the instructions listed in Deploying
Windows Mobile 5.0 with Small Business Server 2003.


I added these exceptions to ISA SERVER 2004:
1. WCESCOMM - Disabled - 0
2. WCESMGR - Disabled - 0
3. REPIMGR - Disabled - 0


I am using a third party SSL certificate as listed above.


I am synching the device on a laptop with the firewall client enabled
and functioning.


Scenario:
I can WIRELESSLY sync to the server with the 6700 PPC using the Sprint
network.


I CANNOT sync to the device when the 6700 PPC is in the cradle
connected to the laptop computer.


I get the following error on the laptop:
The server could not be reached. This can be caused by temporary
network conditions.
Support Code: 85002003


I have restarted the laptop after adding the ISA exceptions.
I have tried the laptop with the firewall client enabled and disabled.
I have added the self-signed SBS 2003 IIS certifcate to the 6700 PPC
device as well just to be sure.


NOTE:
If I change ActiveSync to reflect the internal name of the server (i.e.

servername) it will sync in the cradle but then the 6700 PPC will not
sync wirelessly.
I CANNOT connect to http://externaladdress.com/oma on acomputer on the
internal network.


So it appears that activesync cannot resolve the external IP secure
address (i.e. https://externaladdress.com) when it is on the network.

I cannot surf the internet on the 6700 PPC when it is in the cradle (no

problem when it is out of the cradle). When I do try it in the cradle
I get error: "The current connection cannot be used for your request.
Please end the current connection and try again."

I didn't try to set up a separate connection on the PPC. I just did a
hard reset on the PPC and kept the default settings.


The laptop is on the local LAN but couldn't sync remotely when off the
LAN.


I can get to http and https://server/oma from the laptop on the LAN but
not https or https://public domain (as listed on the SSL)/oma


I listened to the SBS podcast 14 and they mention this as a problem but

don't really give any solution except for the ISA exceptions.


Any assistance would be greatly appreciated.
Bruce





.

Relevant Pages

  • For anyone interested in blocking nameserver lookups to sites
    ... I am using a BIND ... 8.2.x series name server and a semi-current version of RedHat Linux. ... Setup your forwarders as your primary and secondary name servers (these are ... zone "doubleclick.net" in { ...
    (comp.os.linux.security)
  • Re: For anyone interested in blocking nameserver lookups to sites
    ... > 8.2.x series name server and a semi-current version of RedHat Linux. ... > The first thing that you need to do is setup the start of the named.conf ... > zone "doubleclick.net" in { ... > however you can go into Internet Options -> Advanced tab and turn off ...
    (comp.os.linux.security)
  • Re: WM 5.0 and Sprint 6700 PPC-cant sync in cradle but can throug
    ... I have had this problem with my own setup. ... Then setup A entries for the Internet server names e.g. ... I can WIRELESSLY sync to the server with the 6700 PPC using the Sprint ...
    (microsoft.public.pocketpc.activesync)
  • Re: Is this possable with exchange and no ISP
    ... What I would do is just setup email for the AD domain. ... follow the directions below and instead setup DNS in a new primary zone (and ... Create an MX record for the domain pointing to your Exchange server. ... > dc i create pointers and mx records for the 2 computers on their network. ...
    (microsoft.public.exchange.setup)
  • Re: WM 5.0 and Sprint 6700 PPC-cant sync in cradle but can throug
    ... The server denied the specified Uniform ... Allow any authenticated user to update DNS records within the same ... This setup may not be correct. ... I can WIRELESSLY sync to the server with the 6700 PPC using the Sprint ...
    (microsoft.public.pocketpc.activesync)
Loading