RPC over HTTP not working

The serviced offices where a client of mine work has the building
configured through a firewall that maps external IP addresses to
internal ones. This has created havoc with our standard SBS 2003
server setup. The building IT people assure me all the right ports are
open.

Our office has it's own little network on the internal NIC. The
external NIC had to be set up to talk to the buildings firewall/router
at 10.32.11.10 (external NIC)

However, when accessing the server from outside, I have to access it
via 82.110.241.nnn

This IP mapping has confused the hell out of the standard
http://mycomputer.com/remote autocreation tools and the standard
remote desktop.

When SBS creates an authentification certificate, the issuer is
10.32.11.10. However, as the browser on the client side thinks it's
talking to 82.110.241.nnn, the security settings throws a strop and
says the name on my certificate is invalid.

How do I get around this? From what I gather RPC over HTTP requires a
valid certificate to work. Is there a way I can get the server produce
a certificate with the 82.110.241.nnn IP address as the issuer?

Aside from that, how do I set up 'RPC over HTTP' with this IP mapping
getting in the way?

I've got a mycompany.dyndns.org ip address mapped to 82.110.241.nnn
which gets me into the admin website and OWA fine but what about the
rest? Some functions require a certificate. I cannot get remote
desktop to work directly (but it does from
http://mycomputer.com/remote) and VPN is also stuffed.

However, the most pressing thing is getting Outlook 2003 to see the
exchange server.

Let me know if I've got this wrong....

I'm assuming that the Exchange server is still 'max-server' (the
internal name of the server)

Username = dale

Exchange proxy settings:
URL for proxy server to exchange : mycompany.dyndns.org
Principle name for proxy server : msstd:mycompany.dyndns.org

But here's where I'm confused. could either of these just be
10.32.11.10 (the ip address the server thinks it is)?

This IP mapping is driving me nuts. It was all working fine before
they came up with this lame scheme.

---
Dale Walker
London Techno Events
dale@sorted,org
http://london.sorted.org
.

Relevant Pages

  • RE: FW: Exchange Server and External Access
    ... Why not vpn to your network through the linux firewall. ... Currently what i have set up is a Linux server ... connections to the exchange server. ... internet connection. ...
    (Security-Basics)
  • RE: HTTP/1.1 503 Service Unavailable
    ... "There is a problem with this website's security certificate. ... Exchange server cannot send/receive emails. ... It seems that the Exchange server is not configured properly. ... Please help me gather IIS log and Metabase to me for further analysis, ...
    (microsoft.public.windows.server.sbs)
  • RE: SBS 2k3 CA - How can I issue a *.ourdomain.com certificate ?
    ... the CEICW Wizard will configure the RRAS component to be the basic firewall. ... I.How many NIC are installed on the SBS 2003 server box? ... On the Web Server Certificate page shows. ...
    (microsoft.public.windows.server.sbs)
  • Re: Trying to get RPC over HTTP for Outlook working
    ... Outlook 2007 in Vista) ... name the certificate was issued to is *.some.domain. ... I have a similar situation, my domain is company.local, server ... Enable the Exchange server as an RPC/HTTPS backend server. ...
    (microsoft.public.outlook.installation)
  • Re: Trying to get RPC over HTTP for Outlook working
    ... name is where the certificate is multiple fqdn server names. ... I have a similar situation, my domain is company.local, server name ... Enable the Exchange server as an RPC/HTTPS backend server. ... Sounds good configuring settings into the Outlook ...
    (microsoft.public.outlook.installation)