Re: Remote Access

Hi Dennis,

Thanks for updating and also for Joe's input.

I am sorry for the delay response due to the weekend.

For your second problem, please try the following:

Step 1: Please rerun CEICW, this helps up configure network and websites
correctly:
1. Click Start, click Server Management. Click To Do List and then click
"Connect to the Internet". Click Next, and go through the Internet option.
2. Select Enable firewall and click Next.
3. On the Web Services Configuration page shows, make sure Remote Work
Webplace is selected. Click Next.
Note: You can select other items according to your needs, for example:
Outlook Web Access, Business Website (wwwroot) and so on.
4. On the Web Server Certificate page shows. Select "Create a new Web
server certificate", and type your FQDN (mail.domain.com) in the "Web
server name" text box. Click Next.
IMPORTANT: The FQDN that you type in the "Web server name" box must be the
same name that you use to connect to the Web site from the Internet. For
example, if the URL that you use to connect to the RWW is
https://server.contoso.com/remote, type "server.contoso.com" (without the
quotation marks) in the "Web server name" box. If you use
http://ipaddress/remote to access RWW, type the public IP address in the
"Web server name".
5. Go through the steps to finish the wizard.

Step 2: If your router supports UPNP, the CEICW will configure this
automatically. To make sure, please check if ports 80, 443, 3389, 4125 open.

If the problem still exists, please understand that our newsgroup is an
issue based service, meaning we usually respond to one question/issue per
post. Therefore, it is recommended you create a new thread so that the
dedicated MS engineer can help you on it. Thank you for your understanding!

If you need further assistance, please don't hesitate to let me know.

Best regards,

Robert Li(MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security

=====================================================

This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.

=====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.

--------------------
<Date: Sat, 19 May 2007 22:00:23 +0100
<From: Joe <joe@xxxxxxxxxxxxxx>
<User-Agent: Icedove 1.5.0.10 (X11/20070329)
<MIME-Version: 1.0
<Subject: Re: Remote Access
<References: <2AFCB0CE-1A13-4674-BDD2-C31586E5FA18@xxxxxxxxxxxxx>
<3rUAE2cdHHA.4368@xxxxxxxxxxxxxxxxxxxxxx>
<28CECEFF-A739-43EA-86AD-0F7BBAE44885@xxxxxxxxxxxxx>
<Tifi3FqdHHA.4568@xxxxxxxxxxxxxxxxxxxxxx>
<3BBFBE54-90ED-49C4-87F1-4E3909814CB0@xxxxxxxxxxxxx>
<In-Reply-To: <3BBFBE54-90ED-49C4-87F1-4E3909814CB0@xxxxxxxxxxxxx>
<Content-Type: text/plain; charset=ISO-8859-1; format=flowed
<Content-Transfer-Encoding: 7bit
<Message-ID: <OuxqAjlmHHA.960@xxxxxxxxxxxxxxxxxxxx>
<Newsgroups: microsoft.public.windows.server.sbs
<NNTP-Posting-Host: jretradingltd.demon.co.uk 80.177.211.93
<Lines: 1
<Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP03.phx.gbl
<Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:38039
<X-Tomcat-NG: microsoft.public.windows.server.sbs
<
<denniscking wrote:
<> Robert,
<>
<> I have a new problem. I was successful publishing the site to the
internet
<> for remote access. However, when I try to access the web server remotely
in
<> an IE browser it is not found.
<> I neglected to tell you that SBS R2 is behind a router which I thought
would
<> be configured properly using the CEICW wizard. Now I read in another
post
<> that if SBS is behind a router, I need to configure the port forwarding
<> settings on the router to forward port 4125 to SBS external network
adapter.
<> Is this so or did the CEICW wizard handle that for me? And if it did why
cant
<> I access the server remotely from a client using the URL assigned?
Thanks for
<> all your help.
<>
<
<A brief word on uPnP: don't.
<
<It's great for configuring multiple ports dynamically for game-players,
<but on a business network... well, would you trust a firewall which has
<been configured to be remotely controlled by games?
<
<Always turn off uPnP in the router and configure port forwarding
<manually, then you know for sure what has been done and what hasn't.
<
<Port 4125 is the one used to carry RDP for logging in to workstations
<through RWW. If it isn't open, that won't work, but you will get the
<web page itself. Port 443 is the https port, which gives you the web
<page and must also be forwarded. Don't bother scanning for port 4125,
<as nothing is listening on it until you tell the RWW web page which
<machine you want to connect to.
<
<I don't think you've mentioned whether the SBS has ISA running. ISA is
<quite fussy about web access, and may be causing some trouble. Can you
<get the RWW web page from the LAN?
<
<One other point, but not one which you seem to have hit yet: the first
<time IE connects to RWW, it needs to download an ActiveX control. The
<IE security policy may stop that happening, but if so it will give you
<a useful error message saying so. Because this control is needed, only
<IE can be used to access RWW. On the other hand, any browser with Java
<can use Outlook Web Access, so it's a bit simpler to test. The URL
<is https://<FQDN>/exchange. That will confirm port 443 is forwarded,
<and that ISA, if installed, is not blocking access.
<

.

Relevant Pages

  • Re: RWW missing from CEICW
    ... However, after fiddling with RRAS, RWW showed up on the CEICW Services ... it's been changed to a non-standard port, but only as long as the port in ... CEICW and in RRAS match, or the moon is two days past full, or something. ...
    (microsoft.public.windows.server.sbs)
  • RWW missing from CEICW
    ... I seem to have permanently confused CEICW. ... screen, RWW is no longer an option; ... I was trying to change the port for RWW (why make it easy to guess _why_ we ... On the Services Configuration screen, ...
    (microsoft.public.windows.server.sbs)
  • Re: Access SBS2003 from WinXP Remote Desktop Connection
    ... I suppose you are using Remote Destop to connect to the XP ... If you use RWW, you need TCP 4125. ... and then modify the router to route that port. ... >asked did you enable TS when you ran CEICW? ...
    (microsoft.public.windows.server.sbs)
  • Re: disconnect a hacker
    ... My Web server station is right next ... my attention divided by security concerns... ... see an IP connected to port 80, ... I've been forwarding my firewall logs to my ISP, ...
    (alt.computer.security)
  • Re: disconnect a hacker
    ... My Web server station is right next ... ]see an IP connected to port 80, ... ]I notice a significant number of probes on my firewall console window ... that the attacks on you are simply attacks on you amongst millions of ...
    (alt.computer.security)