Re: RPC over HTTP scenario
- From: "Les Connor [SBS Community Member - SBS MVP]" <les.connor@xxxxxxxxxxxx>
- Date: Sat, 4 Mar 2006 20:52:12 -0600
That's fine, that's the way it should be.
The key is - whatever resolves to the public ip (which is forwarded to the
private ip of the SBS) from the internet, is the name you need to use when
you generate your certificate.
--
Les Connor [SBS Community Member - SBS MVP]
-----------------------------------------------------------
SBS Rocks !
----------------------
"Tell me and I'll forget. Show me and I'll remember. Involve me and I'll
understand." - Confucius
"Stephen Harrington" <stephen@xxxxxxxxx> wrote in message
news:efQtBa8PGHA.3984@xxxxxxxxxxxxxxxxxxxxxxx
If you'll notice in my original post, the server is not configured with
two NICS. The firewall, an external device to the server, is what has the
WAN IP.
""Crina Li"" <v-crinal@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:A1u10eqPGHA.1484@xxxxxxxxxxxxxxxxxxxxxxxx
Hi Stephen,
Thanks for your update.
AS Les said, if 'office.abcgc.com' will get you to the router from the
internet, it is exactly the name you would use for the certificate. Also
please make sure you have configured SBS as following:
On SBS server:
External NIC:
IP: assigned by your ISP or your hardware router
Gateway: your ISP or your Hardware router IP
DNS: SBS INTERNAL NIC IP as the only entry
Internal NIC:
IP: Fixed IP
Gateway: None
DNS: SBS INTERNAL NIC IP as the only entry
In the DNS console (dnsmgmt.msc), right click your ServerName and click
properties. In the Forwarders tab, your ISP DNS server IP should be
inputted there.
On workstation inside your SBS local subnet
IP: Assigned by DHCP on SBS
Gateway: SBS internal NIC IP
DNS: SBS INTERNAL NIC IP as the only entry
As I know, the following ports are required for the SBS 2003 server. So,
if
you need, please open the port on router.
TCP 25 This port is used for incoming SMTP traffic. If you are using POP3
connector, there is no need to open this port.
TCP 110 This port is used for POP3 mail clients.
TCP 443 SSL
TCP 444 Companyweb SSL
TCP 4125 Remote Web Workplace
TCP 3389 Terminal services
TCP 1723 PPTP VPN connection
GRE port (protocol number 47) This port is used for incoming PPTP VPN
connection.
Thanks for your time and I look forward to hearing from you.
Best regards,
Crina Li (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the
corresponding
newsgroups so that they can be resolved in an efficient and timely
manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check
the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In
doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no
rights.
--------------------
| From: "Stephen Harrington" <stephen@xxxxxxxxx>
| References: <OLcebqYPGHA.3856@xxxxxxxxxxxxxxxxxxxx>
<woC6YRcPGHA.4520@xxxxxxxxxxxxxxxxxxxxx>
| Subject: Re: RPC over HTTP scenario
| Date: Thu, 2 Mar 2006 09:02:05 -0700
| Lines: 142
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2900.2527
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527
| X-RFC2646: Format=Flowed; Original
| Message-ID: <#xl6INhPGHA.3272@xxxxxxxxxxxxxxxxxxxx>
| Newsgroups: microsoft.public.windows.server.sbs
| NNTP-Posting-Host: office.amnet.net 71.39.54.22
| Path: TK2MSFTNGXA03.phx.gbl!TK2MSFTNGP08.phx.gbl!tk2msftngp13.phx.gbl
| Xref: TK2MSFTNGXA03.phx.gbl microsoft.public.windows.server.sbs:248795
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Thanks for your reply.
|
| Yes, I have already followed those steps numerous times to no avail.
|
| I think my problem lies in one of two areas. First, since the SBS
server
is
| NOT directly connected to the Internet with an Internet name
associated,
I
| may have problems resolving to it. When you're doing the certificate
setup
| on the server, you are asked for the full name of the server. For this
| server, it would be abcsrv.office.abcgc.com. However, that is not
viewable
| across the Internet. The firewall has the IP address which is
associated
| with office.abcgc.com and is setup to forward the necessary services to
the
| server or to other places on the network. So, once again, I may be
| incorrect in what I have designated in the certificate setup portion of
the
| wizard.
|
| The second area where the problem could be is the firewall itself.
I've
| forwarded 80 and 443 to the server. Perhaps something else is missing?
|
| Thanks again.
|
|
| ""Crina Li"" <v-crinal@xxxxxxxxxxxxxxxxxxxx> wrote in message
| news:woC6YRcPGHA.4520@xxxxxxxxxxxxxxxxxxxxxxxx
| > Hi Stephen,
| >
| > Thank you for posting in SBS newsgroup.
| >
| > From the description, I understand the issue to be: you can not
configure
| > RPC over HTTP and receive error 0x8004011D. If I have misunderstood
your
| > concerns, please do not hesitate to let me know.
| >
| > As I know, you need to specify office.abcgc.com for the certificate
when
| > you run CEICW. And then please follow the steps below to install RPC
over
| > HTTP:
| >
| > 1. Open http://servername/remote on SBS and then click Configure
Outlook
| > via the Internet.
| > 2. Please closely follow the steps listed to configure the RPC over
HTTP.
| >
| > Hope it helps.
| >
| > I appreciate your time and look forward to hearing from you.
| >
| > Best regards,
| >
| > Crina Li (MSFT)
| >
| > Microsoft CSS Online Newsgroup Support
| >
| > Get Secure! - www.microsoft.com/security
| >
| > =====================================================
| > This newsgroup only focuses on SBS technical issues. If you have
issues
| > regarding other Microsoft products, you'd better post in the
corresponding
| > newsgroups so that they can be resolved in an efficient and timely
manner.
| > You can locate the newsgroup here:
| > http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
| >
| > When opening a new thread via the web interface, we recommend you
check
| > the
| > "Notify me of replies" box to receive e-mail notifications when there
are
| > any updates in your thread. When responding to posts via your
newsreader,
| > please "Reply to Group" so that others may learn and benefit from
your
| > issue.
| >
| > Microsoft engineers can only focus on one issue per thread. Although
we
| > provide other information for your reference, we recommend you post
| > different incidents in different threads to keep the thread clean. In
| > doing
| > so, it will ensure your issues are resolved in a timely manner.
| >
| > For urgent issues, you may want to contact Microsoft CSS directly.
Please
| > check http://support.microsoft.com for regional support phone
numbers.
| >
| > Any input or comments in this thread are highly appreciated.
| >
| > =====================================================
| >
| > This posting is provided "AS IS" with no warranties, and confers no
| > rights.
| > --------------------
| > | From: "Stephen Harrington" <stephen@xxxxxxxxx>
| > | Subject: RPC over HTTP scenario
| > | Date: Wed, 1 Mar 2006 16:43:43 -0700
| > | Lines: 31
| > | X-Priority: 3
| > | X-MSMail-Priority: Normal
| > | X-Newsreader: Microsoft Outlook Express 6.00.2900.2527
| > | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2527
| > | X-RFC2646: Format=Flowed; Original
| > | Message-ID: <OLcebqYPGHA.3856@xxxxxxxxxxxxxxxxxxxx>
| > | Newsgroups: microsoft.public.windows.server.sbs
| > | NNTP-Posting-Host: office.amnet.net 71.39.54.22
| > | Path:
TK2MSFTNGXA03.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP12.phx.gbl
| > | Xref: TK2MSFTNGXA03.phx.gbl
microsoft.public.windows.server.sbs:248591
| > | X-Tomcat-NG: microsoft.public.windows.server.sbs
| > |
| > | I'm having some problems configuring a SBS 2003 server for RPC over
| > HTTP.
| > | Perhaps I'm missing something, or perhaps I have a scenario that's
no
| > | described here.
| > |
| > | Let's say my customer is ABC General Contractors (fictional). They
are
| > a
| > | small business. Here is their setup:
| > |
| > | Internet connection with a static IP address assigned to the WAN
side
of
| > the
| > | firewall. --->
| > | WAN IP address has two names associated with it on the Internet,
| > | mail.abcgc.com and office.abcgc.com --->
| > | Server is named ABCSRV and has a private class IP address of
| > 192.168.1.5.
| > | The internal domain is ALSO office.abcgc.com. Thus, the server's
FQDN
| > is
| > | abcsrv.office.abcgc.com
| > |
| > | The firewall is setup to forward 443 and 80 to the server's
internal
IP
| > | address. Users can access OWA by using
https://mail.abcgc.com/exchange
| > and
| > | https://office.abcgc.com/exchange and can successfully POP and use
SMTP
| > | through those two addresses.
| > |
| > | When we try to connect Outlook to the server, we receive error
| > 0x8004011D.
| > |
| > | One item that's throwing me off is when doing the Internet
Connection
| > | Wizard, what should I specify for the certificate when it asks for
the
| > full
| > | server name? Should it be abcsrv.office.abcgc.com or just
| > office.abcgc.com?
| > | Could that be where my problem lies?
| > |
| > | I have yet to find information on getting this configured when the
| > server
| > | has a private class IP. Any suggestions on where to start?
| > |
| > |
| > |
| >
|
|
|
.
- References:
- RPC over HTTP scenario
- From: Stephen Harrington
- RE: RPC over HTTP scenario
- From: "Crina Li"
- Re: RPC over HTTP scenario
- From: Stephen Harrington
- Re: RPC over HTTP scenario
- From: "Crina Li"
- Re: RPC over HTTP scenario
- From: Stephen Harrington
- RPC over HTTP scenario
- Prev by Date: Re: Users Can't Log In - Urgent
- Next by Date: Re: Map 2nd Ext IP to svr2 w/ ISA
- Previous by thread: Re: RPC over HTTP scenario
- Next by thread: Re: RPC over HTTP scenario
- Index(es):
Relevant Pages
|
Loading
