Re: SMB2K3 Prem: Setup with Dynamic DNS Service TZO

From: Merv Porter [SBS-MVP] (mwport_at_no_spam_hotmail.com)
Date: 02/05/05

Next message: Jeff Middleton [SBS-MVP]: "Re: importating exchange 2000 SBS database to 2003 SBS"
Previous message: Susan: "Re: Adobe PDF files and OWA"
In reply to: John: "SMB2K3 Prem: Setup with Dynamic DNS Service TZO"
Next in thread: GG [MVP]: "Re: SMB2K3 Prem: Setup with Dynamic DNS Service TZO"
Reply: GG [MVP]: "Re: SMB2K3 Prem: Setup with Dynamic DNS Service TZO"
Messages sorted by: [ date ] [ thread ]

Date: Sat, 5 Feb 2005 13:55:34 -0500

SBS 2003 DDNS and Email Setup Procedure...

(feel free to point out any required corrections)

DDNS ACCOUNT

Create a DDNS (Dynamic DNS) account at dyndns.org, tzo.com, no-ip.com or
other DDNS provider. For basic services, many of these are free. This will
map your (potential changeable) Dynamic IP address from your ISP to your
DDNS account so that you can always have access to your server, even if the
IP address changes.

To determine your present public IP address, you can go to:

http://checkip.dyndns.org

NETWORK SETUP

The preferred network setup is 2 NICs in the SBS server plus a router. A
network configuration diagram can be found:

http://www.smallbizserver.net/Default.aspx?tabid=50

Ignore the text as that was written for setting up SBS 2000. For SBS 2003,
just follow the diagram to set up your hardware. In your router's setup
program, forward the following ports to the external NIC of your SBS:

4125, 443. for Remote Web Access, Outlook Web Access

1723, GRE Protocol 47. for VPN; sometimes called VPN Pass-through or PPTP
Pass-through in the router setup

CEICW SETUP

For the following steps, you may want to refer to Andy Goodman's web site
for screen shots and additional setup dialog for running CEICW and Configure
Remote Access.

Configure CEICW

http://www.sbs-rocks.com/sbs2k3/sbs2k3-n2.htm

Configure Remote Access

http://www.sbs-rocks.com/sbs2k3/sbs2k3-n3.htm

After you have the hardware set up and the router configured, run CEICW
(Connect to the Internet) in the Server Management console. On the Firewall
screen, select "Enable Firewall" and then choose the services you want to
allow (FTP is not recommended). On the Web Services Configuration screen,
select OWA and RWW (and anything else you need). On the Web Server
Certificate screen, under "Create a New Web Server Certificate", enter your
new DDNS account Fully Qualified Domain Name (FQDN; e.g.,
yourcompany.dyndns.org).

SMARTHOST

As is normal with many ISPs, you'll probably need to authenticate to your
ISP's SMTP server when SENDING mail. In order to accomplish this, you'll
first need to configure Exchange server to use a Smarthost. So, continuing
on with CEICW, at the "Internet E-mail" screen, select Enable Internet
e-mail. On the Email Delivery Method screen, select "Forward all email to
the email server at your ISP". Enter your ISP's SMTP server (e.g.,
mail.yourisp.com).

POP3 CONNECTOR

Since you have a dynamic public IP address from your ISP, you'll probably
need to set up the POP3 Connector to RETRIEVE email. On the Email Retrieval
Method screen, select "Use the Microsoft Connector for POP3 Mailboxes".
Now, the presumption is that you have registered a domain name and your ISP
(or another 3rd party service) is hosting your email. So, on the Email
Domain Name screen, enter your FQDN for your email (e.g., mycompany.com).
This will be the email (domain) address which will be attached to all
outgoing mail (e.g., user@mycompany.com). The next screen(s) will let you
set up retrieval for individual POP3 accounts or a single global account
(depending on how you will be retrieving your POP3 mail).

COMPLETING CEICW

Continue through the remainder of the CEICW screens and SBS will set itself
up.

CONFIGURE REMOTE ACCESS

If you need to set up VPN service, after CEICW has completed, run Configure
Remote Access from the Server Management console.

SMARTHOST AUTHENTICATION

In CEICW you told it to "Forward all email to the email server at your ISP"
(i.e., use the ISP as a Smarthost). Most ISPs require authentication to do
this. To configure authentication, go to:

and enter your authentication credentials. This is usually the primary
account username/password or an email account username/password that was set
up when you signed up with your ISP. Once you've done this, click OK three
times and your Smarthost authentication is done.

UPDATING YOUR IP ADDRESS WITH YOUR DDNS SERVICE

Now, since your ISP-assigned dynamic IP address is subject to change without
notice, you need a way to automatically update your DDNS account
periodically with the correct IP information. Some DDNS service providers
have a small application you run on either the server or a workstation on
your network. If your DDNS provider does not provide one, you can try
DirectUpdate.

DirectUpdate

http://www.directupdate.net

NOTE: Some DDNS providers may require additional configuration if you are
using SBS 2003 Premium (with ISA). A couple of references are:

http://www.isaserver.org/tutorials/TZO_Packet_Filters.html

http://www.tzo.com/MainPageSupport/HowToPage/HowToMsftProxyServerPacketFilters.html

ACCESSING RWW AND OWA

Once finished, you can access RWW and OWA by entering the following from any
Internet connected web browser and accepting installation of the
certificate:

https://yourcompany.dyndns.org/remote (to access RWW)

https://yourcompany.dyndns.org/exchange (to access OWA)

-- 
Merv  Porter  [SBS MVP]
"John" <John@discussions.microsoft.com> wrote in message
news:72628D80-0B4E-4BC2-AB7C-C7DEFDB0DCA2@microsoft.com...
> Can anyone point me in the direction of some documentation for Setting up
SMB
> 2003 utiliting a Dynamic DNS service such as TZO.  I have been searching
and
> cannot seem to find anything.
>
> Thanks,
>
> John

Next message: Jeff Middleton [SBS-MVP]: "Re: importating exchange 2000 SBS database to 2003 SBS"
Previous message: Susan: "Re: Adobe PDF files and OWA"
In reply to: John: "SMB2K3 Prem: Setup with Dynamic DNS Service TZO"
Next in thread: GG [MVP]: "Re: SMB2K3 Prem: Setup with Dynamic DNS Service TZO"
Reply: GG [MVP]: "Re: SMB2K3 Prem: Setup with Dynamic DNS Service TZO"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

RE: Getting alot of these emails
... Thank you for posting in the SBS newsgroup. ... this issue can occur if your SBS 2003 server is ... Disable the Guest account in your SBS 2003 server and enable Stronger ... Microsoft is providing this information as a convenience to you. ...
(microsoft.public.windows.server.sbs)
RE: Help .. Small Business Server Error may be DNS ?
... Thank you for posting in SBS newsgroup. ... issue can occur when you restart the SBS 2003 server. ... resource from the network with a bad password or an account that was locked ...
(microsoft.public.windows.server.sbs)
Re: connect computer setup fails
... The administrator account you use to login - this is an account with ... Les Connor [SBS MVP] ... > willswing01 is the SBS server. ...
(microsoft.public.windows.server.sbs)
Re: Client Network settings
... change of the domain machine account password. ... the other option would be to create 3 VPC ws images. ... or one complete SBS install and then copy that hard drive? ... I connect to the SBS server? ...
(microsoft.public.windows.server.sbs)
Re: No Fixed IP available for new SBS 2003 install
... other DDNS provider. ... will map your Dynamic IP address to your DDNS account ... your Web server certificate. ... You'll also need something like Directupdate running on the server or a ...
(microsoft.public.windows.server.sbs)