Re: Exchange problems After changing FireWall Harware

Hi Juha:

On the new firewall appliance, did you forward the ports to the nic in the
SBS the same as was done on the old one?

Is the firewall appliance a "high end" device that needs special
configuration?

For example, on some models of Watchguard, tcp port 443 is reserved for
secure remote communication to the Firebox and cannot be used for OWA unless
you change one or the other to use a different port.

For a MS discussion of the ports needed for SBS and RWW, see the following.
In spite of what this article says, do not forward or "open" 80 unless you
know what and why you are doing so, and even then I discourage you from
using any device on your LAN as a web server.

http://www.microsoft.com/technet/prodtechnol/sbs/2003/plan/gsg/appx_c.mspx

--
Larry

Please post the resolution to
your issue so that all can benefit.


"Juha" <Juha@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:4BD231E6-6419-4002-B803-32C5E774CF84@xxxxxxxxxxxxxxxx
Hi

A new customer. SBS 2003, Exchange. DNS and DHCP on the server. I changed
the switches and Firewall HW on friday evening. Now I can receive mails
from
Internet via OWA while logged on to the server. Don't know weather Outlook
clients can receive mail in LAN. I can't send mails to Internet by OWA
while
logged on to the server. The FW should't block any LAN to WAN or LAN to
LAN
traffic. I suppose that before the FW replacment the users were able to
use
OWA both locally on externally in this way:

https://mail.maildomainname.com/exchange

Now it doesn't work anymore (page can't be found) , these works only
locally
and can receive mails send from Internet:

https//serverslanIP/exchange
https://servername.domainname.local/exchange

It seems that there is no way to send mails anywhere else but to another
domaiuser while connected to LAN.

I can see that there is one SmallBusines SMTP Connector set to forward all
mails though this connector to following smart hosts:

mail.ISPDomanname.fi, but I don't belive that it is actually in use.

Wonder what is the problem since I didn't make any changes to server?

Any ideas, please? I suppose there is no ISA in this server.

Thanks,

Juha




.

Relevant Pages

  • Re: Exhange 5.5 Behind Firewall?
    ... > internal LAN to our DMZ for protection. ... > and open ports just to allow the Exchange server to work. ...
    (microsoft.public.security)
  • RE: Exchange problems After changing FireWall Harware
    ... Internet via OWA while logged on to the server. ... I can't send mails to Internet by OWA while ... The FW should't block any LAN to WAN or LAN to LAN ... I can see that there is one SmallBusines SMTP Connector set to forward all ...
    (microsoft.public.windows.server.sbs)
  • Re: Security in AD
    ... number of ports needed between a server and a domain controller? ... on your LAN. ... There's all kinds of stuff the attacker could do. ... Microsoft MVP - Windows Server - Directory Services ...
    (microsoft.public.windows.server.active_directory)
  • Re: Firewall issue? Can nobody help me?
    ... only access certain internal boxes over certain ports and protocols ... Is it better to get a remote command prompt on a server on the LAN that has ...
    (microsoft.public.exchange.connectivity)
  • Re: Liunx and DSL routing
    ... to eth1 on the server. ... confused is the difference between the modem WAN and LAN addresses. ... > others mean just forwarding all the ports. ...
    (comp.os.linux.networking)