Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Rhinorhino on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Can't Access Exchange OWA from outside the firewall

Status
Not open for further replies.
dput

dput

IS-IT--Management
Joined
Jul 12, 2001
Messages
387
Location
US
We just installed Exchange 2000 this weekend with the OWA (Outlook Web Access) option. OWA works fine from inside our network. On the outside of our Raptor Firewall we can contact the OWA Server, but it brings up the skeleton OWA interface, I then just indicates ...loading where e-mail, calendars etc should be. I have HTTP set up to this server, is there anything else we need to do.

Thanks for any help.

Dan Dan
 
Sort by date Sort by votes
try changing the security settings (lower them) in your browser ... I've seen something similar to this on my OWA.
 
Upvote 0 Downvote
OWA 2000 uses the WEBDAV extensions to the HTTP protocol. Raptor's HTTP proxy (httpd) doesn't recognize all WEBDAV commands and consequently denies access when it encounters unimplemented commands for security reasons. The first thing I would try is to update Exchange to service pack 2.

If that does not work try this..

The best method for circumventing this issue is to pass OWA traffic over a secure session (SSL) using HTTPs instead of clear-text HTTP. This has two benefits:

1. The Raptor Firewall HTTP proxy cannot examine the encrypted session data and therefore lets any HTTP commands pass. It still provides security inasmuch as the assumption is if the two servers trust each other enough to setup an SSL session, then they must also trust each other to behave properly within that session.

2. Encrypting your corporate e-mail, calendar, and contacts across the open Internet is a recommended security practice; passing potentially sensitive information in clear-text is just a plain bad idea.

Configuring ISS for HTTPs is fairly trivial: It requires the acquisition and installation of a server certificate. We recommend using a certificate from a valid root CA, such as VeriSign or Entrust, not a test certificate which hasn't been signed by a valid CA. If you run your own CA, you should already know how to generate a signed certificate and distribute the CA certificate to your end-users.

Hope this helps,

Nick
 
Upvote 0 Downvote
Never having setup SSL before, can you give me some detailed directions on how and what to do. MANY THANKS! Dan
 
Upvote 0 Downvote
I assume that you have Raptor 6.5.0 for Win NT. It would be best to contact Symantec. I am far from an expert in Raptor set up and configuration. I use a Cisco PIX box. Sorry if my post miss-led you. I tracked down the cause of your problems on another forum. However the set up I can not lend assistance in. Try this Mail list that supports Raptor questions.

 
Upvote 0 Downvote
Another option would be to map inbound port 80 to private port 80. If you are using Win2K RRAS, you can do this in the "Special Ports" property of the WAN interface in NAT. Game Over, Man!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

S
  • Locked
  • Question Question
MS Exchange contacts question
Replies
0
Views
864
sdp.Daniele
S
A
  • Locked
  • Question Question
MS Exchange Setup
Replies
0
Views
760
andreegington
A
microsGuy16
  • Locked
  • Question Question
Global Address List Names not showing in Outlook OWA 365
Replies
0
Views
3K
microsGuy16
microsGuy16
PatrickRoggers
  • Locked
  • Helpful tip Helpful tip
Safest Way to Import PST file into Exchange Online
Replies
0
Views
4K
PatrickRoggers
PatrickRoggers
T
  • Locked
  • Question Question
How to use third party mail security gateway to scan internal/inter-domain mails in Exchange On-Premise?
Replies
3
Views
3K
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top