RE: Two domains question

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Hi Tim,

Thanks for posting here.

>From your description, I understand that you want to access your office
internal network resources in your home network. If I off the base, please
feel free to let me know.

You can access the internal resources using either RWW or VPN connection
from remote network.

1. For using of RWW, you must run CEICW to publish it to the Internet.

The detailed steps on publishing RWW through CEICW should be:

1. On the SBS 2003 Server open the Server Management console. Go to
Standard Management\To Do List.

2. Click the "Connect to the Internet" link.

3. Choose not to change the connection type and click Next. On the Firewall
page, select "Enable firewall" and click Next (I suppose you have 2 network
adapters in SBS 2003 and if you only have 1 network adapter you will not
see the page and you can go to step 6).

4. On the "Services Configuration" page, select all the items and then
click Next. If you have enabled the port 6001 here you can just dis-select
the item.

5. On the "Web Services Configuration" page, make sure "Allow access to the
entire Web site from the Internet" is selected. If you select "Allow access
to only the following Web site services from the Internet", make sure the
"Remote Web Workplace" item is selected. Click Next.

6. On the "Web Server Certificate" page, choose to create a new Web server
certificate and then type the public FQDN that you will use to access OWA
(for example, if your public FQDN that you use to access the sites is
mail.domain.com, you should type mail.domain.com as the new certificate
name). If you do not have a public FQDN, you can type your public static IP
address here as your certificate. If you already requested a certificate
with the name "mail.domain.com" from a third party CA, you can choose "Use
a Web server certificate from a trusted authority" and then import the
certificate.

7. Go through the remaining steps. The wizard will automatically configure
the SBS 2003 Basic Firewall or ISA to securely publish the two sites.

8. If you have a router or hardware firewall, configure it to forward
inbound traffic on TCP port 80, 443 and 4125 to the SBS server's external
address.

9. Then check if you can access RWW using https://mail.domain.com/remote.
If you can access it, click "Connect to Clients Desktops" and check you can
log on the destination Windows XP computer.

*Note: The user can access the internal network must be either an
administrator or a member of the Remote Web Workplace Users security group.

2. For use of VPN, he must run the Configure Remote Access wizard on
the SBS server and then make sure the VPN required ports and protocols are
opened at both ends. Make sure both networks are not using the same subnet.

For setup VPN follow steps:
a. Start Server Management.
b. Navigate to Internet and E-mail in the left tree panel.
c. Start Configure Remote Access Wizard, choose Enable remote access, and
check VPN access in Remote Access Method page.
d. Continue the wizard, and finish it.
Then, remote users need to configure VPN connection in their computer.

The step-by-step article in Knowledge Base give a detail guide:
323441 How To Install and Configure a Virtual Private Network Server in
Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;323441

If there is a hardware firewall or router between the external network
adapter of the SBS 2003 computer and the Internet, we should have the
routers allow traffic to pass through TCP port 1723 (PPTP) and support
protocol type 47. Protocol type 47 is the Generic Routing Encapsulation
(GRE) protocol. PPTP negotiates a connection on TCP port 1723 and is able
to reliably send data to and from the PPTP server using the GRE protocol.

Related info with similar scenarios, you can refer to:
http://support.microsoft.com/default.aspx?scid=kb;en-us;838239#kb3

Hope this help. If you have any questions or concerns, please do not
hesitate to let me know. I am always happy to be of further assistance.

Have a nice day!

Best Regards,
Jenny Wu
Microsoft Windows Online Support

.

Relevant Pages

  • Re: Outgoing POP3 email missing/lost/not received
    ... ISP's mail server instead of the domain name on the ... SUMMARY OF SETTINGS FOR CONFIGURE E-MAIL AND INTERNET ... Internet Connection Wizard. ... After the wizard completes, the following network connection ...
    (microsoft.public.windows.server.sbs)
  • RE: Help with Internet and Email wizard
    ... Thank you for posting in the SBS newsgroup. ... On SBS Server, run the CEICW, go through "Connection Type" page, on ... Since we don't want to set up an external internet access, ... We can select Option one "Create a new Web server certificate" to ...
    (microsoft.public.windows.server.sbs)
  • Re: Connect the SBS to a remote IIS for Internet Printing
    ... the server can access the Internet with no problems at all. ... Checking network connection, and after a few seconds it says The ... the problem is cause by the configuration of ISA. ...
    (microsoft.public.windows.server.sbs)
  • Re: ISA 2006 Basic Configuration
    ... Why would we point Preferred DNS to itself? ... Configuring the Internal Network Interface ... In the Internet Protocol Properties dialog box, ... Select the Use the following DNS server addresses option. ...
    (microsoft.public.isa.configuration)
  • RE: SSL for Exchange stops WSUS
    ... detect your current network configuration settings or you never run CEICW ... configuring ISA Server 2000 as a gateway server, firewall, and web caching ... This newsgroup only focuses on SBS technical issues. ... How you added a certificate to the default web site? ...
    (microsoft.public.windows.server.sbs)