Cannot contact server through Internet DaveM 5/23/2007 3:07:03 PM Hi Everyone, I have configured SBS2003 with an internal domain of dpmelectronicsltd.local. My Internet domain is davemarriott.com. I can receive emails to davemarriott .com on my server but cannot get access from the internet. I am trying the address https://dpm-pdc.davemarriott.com/remote (my server is dpm-pdc). Does my internal domain have to be set to davemarriott.com. If I simply type in http://davemarriott.com it simply brings up my router. I have checked that all the relevant ports are open. Any ideas -- Dave Marriott DPM Electronics

Re: Cannot contact server through Internet "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 5/24/2007 6:13:47 AM Read inline please. In news:D7B48440-A7AA-4663-BB1F-5CBE7434489C[ at ]microsoft.com, DaveM <DaveM[ at ]discussions.microsoft.com> typed: [Quoted Text] > Hi Everyone, > I have configured SBS2003 with an internal domain of > dpmelectronicsltd.local. My Internet domain is davemarriott.com. I can > receive emails to davemarriott .com on my server but cannot get > access from the internet. I am trying the address > https://dpm-pdc.davemarriott.com/remote (my server is dpm-pdc). Does > my internal domain have to be set to davemarriott.com. If I simply > type in http://davemarriott.com it simply brings up my router. I have > checked that all the relevant ports are open. Your internal domain can be anything, but since you're using https, you need to make sure that the IP address that dpm-pdc.davemarriott.com resolves to on the internet, a=has port 443 open and forwarded to the Exchange server. You will also need a trusted SSL certificate named dpm-pdc.davemarriott.com BTW, this Certificate need not be the same name as the server, it could just as well be exchange.davemarriot.com or mail.davemarriot.com so long as that name resolves to the OWA server internally or externally. E.g. if the internal server is 192.168.200.200, that is the IP it must resolve to. You may have to add a forward lookup zone for the full DNS name (dpm-pdc.davemarriott.com) but that works just as well. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

Re: Cannot contact server through Internet DaveM 5/24/2007 10:25:00 AM Thanks for the reply Kevin. I have also tried the address with http and even with the ip address of my connection. SSL certificate is already dpm-pdc.davemarriott.com and port 443 is open and pointed to dpm-pdc. I am a little confused by the statement, "so long as that name resolves to the OWA server internally or externally". How would I check this. I am only using one network card which is connected to an ADSL modem. My fixed IP address from my ISP is 80.46.103.23 which resolves to davemarriott.com. My internal address is 192.168.3.2. Oddly enough I have had someone successfully connect once over the internet but everyone else who tries cannot see the server. Thanks again Dave -- Dave Marriott DPM Electronics "Kevin D. Goodknecht Sr. [MVP]" wrote: [Quoted Text] > Read inline please. > > In news:D7B48440-A7AA-4663-BB1F-5CBE7434489C[ at ]microsoft.com, > DaveM <DaveM[ at ]discussions.microsoft.com> typed: > > Hi Everyone, > > I have configured SBS2003 with an internal domain of > > dpmelectronicsltd.local. My Internet domain is davemarriott.com. I can > > receive emails to davemarriott .com on my server but cannot get > > access from the internet. I am trying the address > > https://dpm-pdc.davemarriott.com/remote (my server is dpm-pdc). Does > > my internal domain have to be set to davemarriott.com. If I simply > > type in http://davemarriott.com it simply brings up my router. I have > > checked that all the relevant ports are open. > > Your internal domain can be anything, but since you're using https, you need > to make sure that the IP address that dpm-pdc.davemarriott.com resolves to > on the internet, a=has port 443 open and forwarded to the Exchange server. > You will also need a trusted SSL certificate named dpm-pdc.davemarriott.com > BTW, this Certificate need not be the same name as the server, it could just > as well be exchange.davemarriot.com or mail.davemarriot.com so long as that > name resolves to the OWA server internally or externally. E.g. if the > internal server is 192.168.200.200, that is the IP it must resolve to. You > may have to add a forward lookup zone for the full DNS name > (dpm-pdc.davemarriott.com) but that works just as well. > > > > -- > Best regards, > Kevin D. Goodknecht Sr. [MVP] > Hope This Helps > > =================================== > When responding to posts, please "Reply to Group" > via your newsreader so that others may learn and > benefit from your issue, to respond directly to > me remove the nospam. from my email address. > =================================== > http://www.lonestaramerica.com/ > http://support.wftx.us/ > http://message.wftx.us/ > =================================== > Use Outlook Express?... Get OE_Quotefix: > It will strip signature out and more > http://home.in.tum.de/~jain/software/oe-quotefix/ > =================================== > Keep a back up of your OE settings and folders > with OEBackup: > http://www.oehelp.com/OEBackup/Default.aspx > =================================== > > >

Re: Cannot contact server through Internet "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 5/24/2007 12:10:01 PM Read inline please. In news:AAE00622-D728-4608-8ADA-DAF3D3A5EA26[ at ]microsoft.com, DaveM <DaveM[ at ]discussions.microsoft.com> typed: [Quoted Text] > Thanks for the reply Kevin. I have also tried the address with http > and even with the ip address of my connection. SSL certificate is > already dpm-pdc.davemarriott.com and port 443 is open and pointed to > dpm-pdc. I am a little confused by the statement, "so long as that > name resolves to the OWA server internally or externally". How would > I check this. I am only using one network card which is connected to > an ADSL modem. My fixed IP address from my ISP is 80.46.103.23 which > resolves to davemarriott.com. My internal address is 192.168.3.2. > Oddly enough I have had someone successfully connect once over the > internet but everyone else who tries cannot see the server. You need to add an A record for dpm-pdc.davemarriott.com to the Public DNS server, that resolves to the router's IP that has port 443 forwarded to the exchange server. You will also need the name dpm-pdc.davemarriott.com resolve internally to the Private address of the OWA server. If you have several names within the davemarriot.com domain name that must resolve to internal addresses, it might be easier to just create an internal zone for davemarriot.com and add the records to it. Don't forget to add records for all internal and external sites to this zone. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

Re: Cannot contact server through Internet DaveM 5/24/2007 12:50:02 PM Thanks again Kevin, Excuse my ignorance but when I "nslookup" davemarriott.com I get the result 80.46.103.23. If I add an A record of dpm-pdc.davemarriott.com = 80.46.103.23 won't this cause a conflict? -- Dave Marriott DPM Electronics "Kevin D. Goodknecht Sr. [MVP]" wrote: [Quoted Text] > Read inline please. > > In news:AAE00622-D728-4608-8ADA-DAF3D3A5EA26[ at ]microsoft.com, > DaveM <DaveM[ at ]discussions.microsoft.com> typed: > > Thanks for the reply Kevin. I have also tried the address with http > > and even with the ip address of my connection. SSL certificate is > > already dpm-pdc.davemarriott.com and port 443 is open and pointed to > > dpm-pdc. I am a little confused by the statement, "so long as that > > name resolves to the OWA server internally or externally". How would > > I check this. I am only using one network card which is connected to > > an ADSL modem. My fixed IP address from my ISP is 80.46.103.23 which > > resolves to davemarriott.com. My internal address is 192.168.3.2. > > Oddly enough I have had someone successfully connect once over the > > internet but everyone else who tries cannot see the server. > > You need to add an A record for dpm-pdc.davemarriott.com to the Public DNS > server, that resolves to the router's IP that has port 443 forwarded to the > exchange server. > > You will also need the name dpm-pdc.davemarriott.com resolve internally to > the Private address of the OWA server. If you have several names within the > davemarriot.com domain name that must resolve to internal addresses, it > might be easier to just create an internal zone for davemarriot.com and add > the records to it. Don't forget to add records for all internal and external > sites to this zone. > > > -- > Best regards, > Kevin D. Goodknecht Sr. [MVP] > Hope This Helps > > =================================== > When responding to posts, please "Reply to Group" > via your newsreader so that others may learn and > benefit from your issue, to respond directly to > me remove the nospam. from my email address. > =================================== > http://www.lonestaramerica.com/ > http://support.wftx.us/ > http://message.wftx.us/ > =================================== > Use Outlook Express?... Get OE_Quotefix: > It will strip signature out and more > http://home.in.tum.de/~jain/software/oe-quotefix/ > =================================== > Keep a back up of your OE settings and folders > with OEBackup: > http://www.oehelp.com/OEBackup/Default.aspx > =================================== > > >

Re: Cannot contact server through Internet "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 5/24/2007 1:07:29 PM Read inline please. In news:661BF69B-6E6B-4556-8DC1-3B51546FCC7E[ at ]microsoft.com, DaveM <DaveM[ at ]discussions.microsoft.com> typed: [Quoted Text] > Thanks again Kevin, > > Excuse my ignorance but when I "nslookup" davemarriott.com I get the > result > 80.46.103.23. If I add an A record of dpm-pdc.davemarriott.com = > 80.46.103.23 won't this cause a conflict? In DNS you can have multiple A records with different names pointing to the same IP. You can also have mutiple A records with the same name pointing to different IPs. One thing you absolutely cannot do is mix A and CNAME records having the same name (aka node) -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

Re: Cannot contact server through Internet DaveM 5/24/2007 3:30:03 PM Hi Kevin, Thanks for the info. I've added the A record. Could you please explain how I get the name dpm-pdc.davemarriott.com to resolve internally to the private address of the OWA server. -- Dave Marriott DPM Electronics "Kevin D. Goodknecht Sr. [MVP]" wrote: [Quoted Text] > Read inline please. > > In news:AAE00622-D728-4608-8ADA-DAF3D3A5EA26[ at ]microsoft.com, > DaveM <DaveM[ at ]discussions.microsoft.com> typed: > > Thanks for the reply Kevin. I have also tried the address with http > > and even with the ip address of my connection. SSL certificate is > > already dpm-pdc.davemarriott.com and port 443 is open and pointed to > > dpm-pdc. I am a little confused by the statement, "so long as that > > name resolves to the OWA server internally or externally". How would > > I check this. I am only using one network card which is connected to > > an ADSL modem. My fixed IP address from my ISP is 80.46.103.23 which > > resolves to davemarriott.com. My internal address is 192.168.3.2. > > Oddly enough I have had someone successfully connect once over the > > internet but everyone else who tries cannot see the server. > > You need to add an A record for dpm-pdc.davemarriott.com to the Public DNS > server, that resolves to the router's IP that has port 443 forwarded to the > exchange server. > > You will also need the name dpm-pdc.davemarriott.com resolve internally to > the Private address of the OWA server. If you have several names within the > davemarriot.com domain name that must resolve to internal addresses, it > might be easier to just create an internal zone for davemarriot.com and add > the records to it. Don't forget to add records for all internal and external > sites to this zone. > > > -- > Best regards, > Kevin D. Goodknecht Sr. [MVP] > Hope This Helps > > =================================== > When responding to posts, please "Reply to Group" > via your newsreader so that others may learn and > benefit from your issue, to respond directly to > me remove the nospam. from my email address. > =================================== > http://www.lonestaramerica.com/ > http://support.wftx.us/ > http://message.wftx.us/ > =================================== > Use Outlook Express?... Get OE_Quotefix: > It will strip signature out and more > http://home.in.tum.de/~jain/software/oe-quotefix/ > =================================== > Keep a back up of your OE settings and folders > with OEBackup: > http://www.oehelp.com/OEBackup/Default.aspx > =================================== > > >

Re: Cannot contact server through Internet "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 5/24/2007 4:15:21 PM Read inline please. In news:3FA4D902-BEA2-4D03-80AD-CC521C64C8CF[ at ]microsoft.com, DaveM <DaveM[ at ]discussions.microsoft.com> typed: [Quoted Text] > Hi Kevin, Thanks for the info. I've added the A record. Could you > please explain how I get the name dpm-pdc.davemarriott.com to resolve > internally to the private address of the OWA server. Assuming you do not already have a zone for davemarriot.com there are two methods. 1. If dpm-pdc.davemarriott.com is the only name in davemarriot.com you need to resolve differently on the internal network, create a new forward lookup zone, name the zone dpm-pdc.davemarriott.com, make it AD integrated (for replication purposes), then in that zone create one new host (A) record, leave the name field blank and give it the IP address of the exchange server. 2. If there ARE other names that need to resolve differently internally, create the new zone and name it davemarriott.com, in that zone you will have to add records for every name that you will ever need to resolve internally, e.g. www, mail, ftp, dpm-pdc, etc. and give them the IP address needed for internal clients to connect to the servers. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

Re: Cannot contact server through Internet DaveM 5/25/2007 8:50:01 PM Hi Kevin, The server is working on the internet now. I've been trying to get it working for months now so I really appreciate your help. Thanks very much -- Dave Marriott DPM Electronics "Kevin D. Goodknecht Sr. [MVP]" wrote: [Quoted Text] > Read inline please. > > In news:3FA4D902-BEA2-4D03-80AD-CC521C64C8CF[ at ]microsoft.com, > DaveM <DaveM[ at ]discussions.microsoft.com> typed: > > Hi Kevin, Thanks for the info. I've added the A record. Could you > > please explain how I get the name dpm-pdc.davemarriott.com to resolve > > internally to the private address of the OWA server. > > Assuming you do not already have a zone for davemarriot.com there are two > methods. > > 1. If dpm-pdc.davemarriott.com is the only name in davemarriot.com you need > to resolve differently on the internal network, create a new forward lookup > zone, name the zone > dpm-pdc.davemarriott.com, make it AD integrated (for replication purposes), > then in that zone create one new host (A) record, leave the name field blank > and give it the IP address of the exchange server. > > 2. If there ARE other names that need to resolve differently internally, > create the new zone and name it davemarriott.com, in that zone you will have > to add records for every name that you will ever need to resolve internally, > e.g. www, mail, ftp, dpm-pdc, etc. and give them the IP address needed for > internal clients to connect to the servers. > > > > -- > Best regards, > Kevin D. Goodknecht Sr. [MVP] > Hope This Helps > > =================================== > When responding to posts, please "Reply to Group" > via your newsreader so that others may learn and > benefit from your issue, to respond directly to > me remove the nospam. from my email address. > =================================== > http://www.lonestaramerica.com/ > http://support.wftx.us/ > http://message.wftx.us/ > =================================== > Use Outlook Express?... Get OE_Quotefix: > It will strip signature out and more > http://home.in.tum.de/~jain/software/oe-quotefix/ > =================================== > Keep a back up of your OE settings and folders > with OEBackup: > http://www.oehelp.com/OEBackup/Default.aspx > =================================== > > >