Re: Remote Web Workplace and Router

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Matt Clapham [MSFT] (mclapham_at_online.microsoft.com)
Date: 06/14/04 

Date: Mon, 14 Jun 2004 10:34:02 -0700

Warren,
    Consider configuring the router to only forward the ports you need (the
ones Marina mentioned in an earlier post), as routers that have "virtual
DMZ" functionality typically forward ALL request to any ports to the
specified internal address. It's a more secure setup to only forward the
ports you know you'll need (e.g. 443, 80, 4125, etc.). The CEICW in SBS
2003 will automatically configure the port forwarding on most routers as
long as it supports UPnP. I suggest you run through that and have it do all
the necessary configuration (if it can).

Also, you'll need a DNS entry for the public IP address (i.e. the one
assigned to the WAN connection on the router). The domain name is
associated with the public address so clients can type in a URL (e.g.
https://www.mysbsserver.com/remote/) and it will resolve to the public
address which in turn routes to your server behind the router. 

-- 
Matt Clapham
Microsoft Corporation
This posting is provided "AS IS" with no warranties, and confers no rights.
"Warren Sirota" <wsirota@worldwidewoodshed.com> wrote in message
news:u1PiethUEHA.3988@tk2msftngp13.phx.gbl...
> Hi, I believe my router has static IP, but whether or not it's static,
> it at least seems to be the same from day to day. If I can get it
> working now, I can worry later about what to do if it changes.
>
> I'm using a DELL 1184 Wireless Router, but I have the server plugged in
> directly, not going wireless (probably doesn't make a difference).
>
> In the Router config screen, you can't set up port forwarding per se,
> but I can reserve a fixed private IP for the server and there is a
> screen called "Virtual Server" which allows me to assign a service or
> ALL services to an internal ip address. So I've assigned "ALL(DMZ)" to
> the server's internal IP addresses (other choices were NONE, HTTP,
> SMTP, etc.) The documentation on the router is garbage so there's no
> way to know what this actually does unless you already understand this
> pretty well. There's also an empty "Static Routing Table" which I can
> add to - I don't think this is relevant, but I'm mentioning it in case
> it is.
>
> I should mention one other thing about my SBS setup: companyweb is
> broken (but I don't care). This is a clean installation: companyweb
> worked until I did my initial ghost (I think) and then it didn't work
> after restart. I have reinstalled this OS 3 times already and can't
> bear to do it again. I don't care about companyweb, and remote access
> works behind my firewall (from other computers in the same private ip
> range), so I would be surprised (and incredibly frustrated) to find
> that it is crucial.
>
> I've run the internet connection wizard, and I can browse from the
> server. In the Remote Access Wizard, I've tried configuring using the
> public ip of the router and the private ip as the dhcp server, and also
> using the public ip as the VPN Server Name.
>
> Whatever I do, the results are the same:
> when I go to http://> from a computer behind
> the firewall, I get into RWW. When I go to
> http://> from anywhere, I get to the router's
> setup login and config screens. When I go to
> https:// or
> https://>/ConnectComputer I get "Page cannot be
> displayed".
>
> Thanks for any help you can offer.
>
> Warren Sirota
>
>
>
> Marina Roos [SBS-MVP] wrote:
>
> > Your ISP will know if you have a public static IP, but you can also
> > check in your router. Your computer doesn't need that public IP.
> > You will have to forward some ports from your router to your external
> > nic-IP:
> > 443 for OWA
> > 4125 for RWW
> > 444 for Companyweb
> > 1723 for VPN (along with GRE-protocol 47)
> > 3389 for TS
> >
> > How many nics in your server? What kind of a router do you have? You
> > have run the CEICW,right? Standard or PRemium?
>

Relevant Pages

  • Re: Cannot connect to RWW from home PC
    ... That would be the address you need a DNS record for. ... You say "And in the router you need to forward to your external nic IP" ... Still can't telnet to any of your ports at your public ip address. ... Heres' the info for our server: ...
    (microsoft.public.windows.server.sbs)
  • Re: Simultaneous DSL and cable modem access on a SBS network...sorf ot.
    ... Internet Connection wizard on the SBS box, ... "More Information" button on what ports need to be opened to the SBS. ... The server and the fax (the line the DSL modem ... The cable modem already has a router attached to it as well, ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 20003 R2 Newbie
    ... Try using a smarthost to send outbound mail from your SBS server. ... you may have better luck using the Earthlink ... In the router, you need to forward some ports to your SBS NIC: ...
    (microsoft.public.windows.server.sbs)
  • Re: Set up Remote Connection
    ... To know what ports you need to forward for RWW and/or OWA, VPN, etc: ... Configuring Virtual Servers on Belkin Router: ... run my internet connection directly from the cable modem to the ... server, and then to the router through the second NIC. ...
    (microsoft.public.windows.server.sbs)
  • Re: Home Networking Question: Bridging/IP Forwarding between 2 LAN segments
    ... WAN port to the switch. ... Connect server 6 to the Westell and configure as necessary to allow ... Connect the WAN port on the Linksys router to the Westell device (or ... Linksys LAN ports. ...
    (microsoft.public.win2000.networking)