Re: RWW with no https
- From: "Gregg Hill" <greggmhill at please do not spam me at yahoo dot com>
- Date: Mon, 13 Oct 2008 16:16:44 -0700
Ross,
Speaking about MS IIS as a web server, in HTTP, one can run multiple
websites using different ports, which I think is sloppy, requiring external
users to add the port at the end of the URL. A better approach is to use
"host headers" and run all sites on the default port 80.
Doing that with SSL? In fact, I believe it does work, as I have had some
installations of Trend Micro antivirus with SSL on port 4343, using IIS on
an SBS server. I do not know if host headers and SSL work together.
We have pointed out that the RDP proxy portion of RWW, i.e., remote access
to workstations, runs on port 4125, which is dynamically opened by the SBS
only when a request to connect has been made via the RWW interface. You may
be able to change the main RWW port from 443 to something else, but if you
do not have 443 forwarded to the SBS any more, you then stop RPC over HTTP
access for Outlook, unless there is a way to tweak that as well.
It just seems that it would be so much easier to change the web server than
to change SBS with its integration of RWW, OWA, OMA, RPC over HTTP, all on
port 443, and RDP via RWW on port 4125.
As stated previously, I believe the best approach to be individual IP
addresses for the web server and SBS via a corporate-grade firewall (that
can handle NAT for multiple WAN IP addresses).
Gregg Hill
"rossk" <rkovelman@xxxxxxxxxxxxxxxx> wrote in message
news:f93676b5-230f-4390-b951-512ce4669085@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Actually if you can run multiple websites on different ports using
HTTP why cant you do the same with HTTPS? Or you saying you can?
On Oct 13, 3:25 pm, "Gregg Hill" <greggmhill at please do not spam me
at yahoo dot com> wrote:
That clears it up! From what you had said, I thought Kerio was on the same
network, which would have been an easy fix to just change its ports. But
now
I understand it is just another web server on the network with SBS.
Yes, your questions have been answered. Actually, that raises one more. If
it is just a web server, why not change its HTTPS port instead of changing
the highly-integrated SBS server?
Or better yet, get a separate IP address and a corporate-grade router to
handle the multiple IP addresses and forwarding.
Gregg Hill
"rossk" <rkovel...@xxxxxxxxxxxxxxxx> wrote in message
news:91fa8c9f-5bd2-4433-bcb8-695159eb5164@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Sorry for the confusion but someone did a port scan on me and found I
am running Kerio which is correct. This question is not related to
the port scan it is for a different network. The network I am talking
about already has a HTTPS running on another web server that we need
access to from the outside. The SBS server we would like to have RWW
work without using HTTPS but it seems this is not possible and or I
need another link to access it. I guess my question has been
answered.
Thanks
On Oct 13, 12:53 pm, "Gregg Hill" <greggmhill at please do not spam me
at yahoo dot com> wrote:
Ross,
You seem to be contradicting your answer to Cris Hanna when he and
others
were asking your intent. You stated, "I can not use https. Https goes to
a
different server running webmail. Maybe I am confused or wrong but you
cant
have two servers behind a firewall running https and allow outside
connections in." That sounds as though you have a webmail server and an
SBS
server on the **same** network. Later, you stated, "Basically that
server
(webmail) is running Https, I still have http open and free to use where
ever. I would like to use it for RWW, is this possible?" That statement
also
makes it sound as though the two servers are on the same network, but
now
you say they are totally different.
Can you explain what "Basically that server (webmail) is running Https,
I
still have http open and free to use where ever. I would like to use it
for
RWW, is this possible?" really means?
Does the network on which SBS resides have another server or not? If it
does
have another server on the same network, what is it doing that precludes
you
from using the standard ports?
If it is a totally different network, and the webmail server is NOT on
the
same network as SBS, then what is the problem with leaving SBS at its
defaults?
Gregg Hill
"rossk" <rkovel...@xxxxxxxxxxxxxxxx> wrote in message
news:b62ca001-d026-440c-8bc4-d52d4ea9b591@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Gregg - This is a totally different network.
On Oct 12, 2:14 am, "Gregg Hill" <greggmhill at please do not spam me
at yahoo dot com> wrote:
I got the Kerio reference from your domain name, gruskingroup.com, in
your
email address. You stated, "Yes I use Kerio for the 75GB limitation
Exchange
has but I don't want to get into a debate about that. Basically that
server
(webmail) is running Https, I still have http open and free to use
where
ever. I would like to use it for RWW, is this possible?" It sounded as
though it is Kerio and is on the same network as SBS.
So are you now saying that the webmail server and the SBS are NOT on
the
same network?
Or are they both on the same network, but it is not Kerio?
Gregg Hill
"rossk" <rkovel...@xxxxxxxxxxxxxxxx> wrote in message
news:9b8f96fb-cd94-4216-a147-5e82fe187957@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Gregg - What you think is my URL as stated prior is not it. This is
for an education site as I am posting this for help for them
Cliff - thanks! That is what I suspected
On Oct 11, 1:13 pm, "Gregg Hill" <greggmhill at please do not spam me
at yahoo dot com> wrote:
Ross,
You did not reply to my question regarding changing Kerio's ports
instead
of
SBS's ports. From our 10,000' view (not knowing your details), it
looks
as
though this procedure would be easier to do on Kerio than trying to
hack
SBS.
Is there a reason you cannot use Kerio's method to change its ports?
Gregg Hill
"rossk" <rkovel...@xxxxxxxxxxxxxxxx> wrote in message
news:622eb355-7866-4cf0-b743-3972f32a8cb4@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Yes I use Kerio for the 75GB limitation Exchange has but I dont want
to get into a debate about that. Basically that server (webmail) is
running Https, I still have http open and free to use where ever. I
would like to use it for RWW, is this possible?
Thanks
On Oct 10, 2:51 pm, "Gregg Hill" <greggmhill at please do not spam
me
at yahoo dot com> wrote:
I agree, except I silently assumed he had some valid reason.
Perhaps
the
two are unrelated systems, i.e., SBS for one domain, Kerio for
another.
Or
maybe using Kerio to get more than 75 limit. We won't know until
he
chimes
in with details.
Gregg Hill
"Cris Hanna [SBS - MVP]" <crisnospamha...@xxxxxxxxxxxxxxxxxxxxx>
wrote
in
messagenews:OMK$0RwKJHA.4292@xxxxxxxxxxxxxxxxxxxxxxx
Or dump Kerio Mail Server since you have the same capabilities in
Exchange
;-)
--
Cris Hanna [SBS - MVP]
Co-Author, Windows Small Business Server 2008 Unleashed
http://www.amazon.com/Windows-Small-Business-Server-Unleashed/dp/0672...
------------------------------------
MVPs do not work for Microsoft
Please do not submit questions directly to me.
"Gregg Hill" <greggmhill at please do not spam me at yahoo dot
com>
wrote
in messagenews:%2339ibMwKJHA.5904@xxxxxxxxxxxxxxxxxxxxxxx
A report from dnsstuff.com indicates that you have Kerio Mail
Server.
Would
it not be easier to change Kerio's ports
(http://support.kerio.com/index.php?_m=knowledgebase&_a=viewarticle&kb...)
than to hack SBS?
Gregg Hill
"rossk" <rkovel...@xxxxxxxxxxxxxxxx> wrote in message
news:300e3428-d13c-4889-9316-39e9542b802d@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I can not use https. Https goes to a different server running
webmail. Maybe I am confused or wrong but you cant have to servers
behind a firewall running https and allow outside connections in.
I
know if its over http and at port 8080 that will work, or at least
I
think I am correct. I am not running SBS 2008, I have 2003. Yes
4125
is now changed to 8080 in the registry but I am not following you
on
the proxy part.
Thanks
On Oct 10, 11:42 am, "Cris Hanna [SBS - MVP]"
<crisnospamha...@xxxxxxxxxxxxxxxxxxxxx> wrote:
Some folks insist on breaking what works so absolutely well. :-)
What is the issue around connecting to the RWW site via SSL?
You're
users
don't like the popup security warning? Or they don't want to
take
the
time
to install the certificate on they're local machine to make
those
warnings
go away.
SBS 2008 absolutely requires connection by SSL and you won't be
able
to
get to the desktops without the certificate on the remote box
--
Cris Hanna [SBS - MVP]
Co-Author, Windows Small Business Server 2008
Unleashedhttp://www.amazon.com/Windows-Small-Business-Server-Unleashed/dp/0672...
------------------------------------
MVPs do not work for Microsoft
Please do not submit questions directly to me.
"rossk" <rkovel...@xxxxxxxxxxxxxxxx> wrote in
messagenews:4974de83-de8e-4984-b99a-e954a846c2dd@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I basically want to run Remote web workplace over the standard
web
port but going to port 8080. I have what I thought changed the
registry setting for RWW from 4125 to 8080 but I want to run the
site
by http and not https. Is this possible?
.
- References:
- RWW with no https
- From: rossk
- Re: RWW with no https
- From: Cris Hanna [SBS - MVP]
- Re: RWW with no https
- From: rossk
- Re: RWW with no https
- From: Gregg Hill
- Re: RWW with no https
- From: Cris Hanna [SBS - MVP]
- Re: RWW with no https
- From: Gregg Hill
- Re: RWW with no https
- From: rossk
- Re: RWW with no https
- From: Gregg Hill
- Re: RWW with no https
- From: rossk
- Re: RWW with no https
- From: Gregg Hill
- Re: RWW with no https
- From: rossk
- Re: RWW with no https
- From: Gregg Hill
- Re: RWW with no https
- From: rossk
- Re: RWW with no https
- From: Gregg Hill
- Re: RWW with no https
- From: rossk
- RWW with no https
- Prev by Date: Re: Exchange and upgrade to SBS 2008
- Next by Date: Re: Question on Volume Shadow Copy Service
- Previous by thread: Re: RWW with no https
- Next by thread: Re: RWW with no https
- Index(es):
Relevant Pages
|
