Re: Remote Access and Outlook Web Access on SBS 2003

---

• From: "Greg Kirkpatrick" <GregKirkpatrick@xxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Mon, 6 Feb 2006 08:33:06 -0800

---

Here is how I configured the network:
-------------------------------------------

SUMMARY OF SETTINGS FOR CONFIGURE E-MAIL AND INTERNET
CONNECTION WIZARD

This file contains detailed information about the
configurations specified in the Configure E-mail and
Internet Connection Wizard.
The configurations specified in the Configure E-mail and
Internet Connection Wizard determine the settings for your
network, firewall, secure Web site, and e-mail.

NETWORKING CONFIGURATION SUMMARY

After the wizard completes, the following network connection
settings will be configured:
Connection type: broadband connection using a local router
device with an IP address
After the wizard completes, the following broadband
connection settings will be configured:
Router connection information:
Local IP address of the router: 192.168.0.1
Preferred DNS server: 66.205.230.9
Alternate DNS server: 66.205.230.10
Connection information for the network adapter used to
connect to your local network:
Local network connection name: Server Local Area
Connection
Local network connection IP address: 192.168.0.2
Local network connection subnet mask: 255.255.255.0
The Default Gateway for the network adapter used to
access the local network is cleared so that network traffic
is routed correctly.
NOTE: The router device connects to the Internet
using the same network adapter as the one used to connect to
the local network.
Routing and Remote Access will be configured as follows:
Enable the service as a router for the local area
network to route network traffic to the Internet.
Enable IP routing to route network traffic to the
Internet.
Enable broadcast name resolution.
Enable Basic Firewall on the demand-dial interface.
Disable the option to automatically assign IP
addresses by using the DHCP allocator because DHCP is
provided by your server’s DHCP server.
Disable the option to resolve IP address for clients
using DNS because DHCP is provided by your server’s DHCP
server.
Set forwarders to 66.205.230.9 and 66.205.230.10 so that
name resolution requests intended for the Internet are
forwarded to the DNS servers at your ISP.
Set the DNS Server service to listen to the IP address of
the local network adapter to ensure that the DNS server is
not responding to DNS request from the Internet.
Modify the binding order so that the local network adapter
has the highest priority to route network traffic to the
Internet.
Set Internet Explorer to never dial a connection, to not use
proxy settings, and set the home page to the address of the
computer running Windows Small Business Server.

FIREWALL CONFIGURATION SUMMARY

After the wizard completes, the following firewall settings
will be configured:
Enable IP routing.

Add the loopback adapter IP address of 127.0.0.1 to
support the http://localhost for IIS.

Internet Information Services (IIS) will be configured as
follows:

Restrict default Web site of IIS to only respond to
requests from the local network.

Set the maximum number of incoming Web request
connections allowed to the default Web site to 500. This
improves system availability and reliability by mitigating
denial-of-service attacks against your Web site.

Allow access to Outlook Web Access to the Internet
by modifying the IP permissions of the Web site for the
following IIS Web site directories to allow clients from any
IP address to connect: /exchange/, /exchweb/, /public/.
Additionally, the Default Web site is configured for Forms
Based Authentication (also called Cookie Authentication).
The Public folder is also configured to accept Windows
Integrated Authentication.

Allow access to Window Sharepoint Services to the
Internet by modifying the IP permissions for the Intranet
IIS Web site directory to allow clients from any IP address
to connect.

Allow access to Remote Web Workplace to the Internet
by modifying the IP permissions for the Remote IIS Web site
directory to allow clients from any IP address to connect.

Allow access to Server performance and usage reports
to the Internet by modifying the IP permissions for the
Monitoring IIS Web site directory to allow clients from any
IP address to connect.

NOTE: Users connecting to Outlook Web Access,
Remote Web Workplace, and Outlook via the Internet, must use
an https:// connection. Additionally, these Web site
directories are configured to require 128-bit encryption.
All other Web sites can use either https:// or http://
connections.


SECURE WEB SITE CONFIGURATION SUMMARY

After the wizard completes, the following secure Web site
settings will be configured:
Secure Sockets Layer (SSL) will be configured as follows:
Do not change current Web server certificate

E-MAIL CONFIGURATION SUMMARY

After the wizard completes, the following e-mail settings
will be configured:
Exchange will be configured as follows:
Email: Do not change Exchange configuration for Internet
e-mail.
Keep the existing Internet e-mail configuration.

After the wizard completes, the icwlog.txt in C:\Program
Files\Microsoft Windows Small Business Server\Support is
updated.
After the wizard completes, the wizard script file
config.vbs is created in C:\Program Files\Microsoft Windows
Small Business Server\Networking\Icw.
NOTE: Each time the wizard runs, a new config.vbs file is
automatically generated to preserve the previous settings.
For example config.vbs, config1.vbs, config2.vbs, and so
on.


.

---

• Follow-Ups:
  • Re: Remote Access and Outlook Web Access on SBS 2003
    • From: Les Connor [SBS Community Member - SBS MVP]

• References:
  • Re: Remote Access and Outlook Web Access on SBS 2003
    • From: Lanwench [MVP - Exchange]
  • Re: Remote Access and Outlook Web Access on SBS 2003
    • From: Lanwench [MVP - Exchange]
  • Re: Remote Access and Outlook Web Access on SBS 2003
    • From: /kj
  • Re: Remote Access and Outlook Web Access on SBS 2003
    • From: Les Connor [SBS Community Member - SBS MVP]

• Prev by Date: Re: user numbers wrong
• Next by Date: Re: Sony Viao Issue Adding to a Domain
• Previous by thread: Re: Remote Access and Outlook Web Access on SBS 2003
• Next by thread: Re: Remote Access and Outlook Web Access on SBS 2003
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: What does the "Configure email and Internet Connection Wizard" ... > the CEICW does (listed under "Configure Email and Internet Connection ... > Configure E-mail and Internet Connection Wizard is designed to correctly ... > configure settings for your network, firewall, secure Web site, and e-mail ... (microsoft.public.windows.server.sbs) Re: What does the "Configure email and Internet Connection Wizard" ... Understanding the Configure E-mail and Internet Connection WizardThe ... Configure E-mail and Internet Connection Wizard is designed to correctly ... configure settings for your network, firewall, secure Web site, and e-mail ... (microsoft.public.windows.server.sbs) Re: Outgoing POP3 email missing/lost/not received ... ISP's mail server instead of the domain name on the ... SUMMARY OF SETTINGS FOR CONFIGURE E-MAIL AND INTERNET ... Internet Connection Wizard. ... After the wizard completes, the following network connection ... (microsoft.public.windows.server.sbs) Re: Big hole?? ... > firewall then even they can't get in, ... > supposedly safe SP2 for Windows XP invites any Internet ... > Connection Sharing of the PC has to be disabled. ... > in fact is a common configuration and not a rare sight. ... (microsoft.public.windowsxp.general) Re: Wireless network issue for two SP2 computers ... with DSL Internet ... When I pull up view network computers, when I try to add network ... >The LAN connection also has TCP/IP, with Client for MS Networks, QoS Packet ... If the computers run the original or SP1 versions of Windows XP, ... (microsoft.public.windowsxp.network_web)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.sbs  > 2006-02