• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

OWA publishing via ISA server 2004 in DMZ

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Cache] >> General >> OWA publishing via ISA server 2004 in DMZ Page: [1]
Login
Message << Older Topic   Newer Topic >>
OWA publishing via ISA server 2004 in DMZ - 6.Sep.2006 11:35:24 PM   
albracco

 

Posts: 10
Joined: 5.Sep.2006
Status: offline
Setting up a test environment. Have an Exchange 2003 server on the internal network. Have a Watchguard internet firewall and a uni-homed ISA server in the DMZ of the firewall. Have set up the ISA server as an SMTP smart host & relay successfully (mails flows in both directions). Next step is to get OWA access to the Exchange working through the ISA server. I've created the correct HTTP firewall rules on the watchguard, just as I did for SMTP. The Watchguard firewall log shows the HTTP traffic as being allowed in. ( I know I should use SSL - that will be the next step once this works). I have used the mail server publishing wizard on the ISA server and setup the rule and told it to listen for all networks. It appears to me that the ISA server never "hears" the http traffic coming in and it dies right there. I know this because I set the Watchguard to also log http traffic allows from the DMZ to the internal network, and I never see such an allow log entry. I can get to Exchange OWA from the internal and DMZ networks just fine, it just doesn't work from the outside.

Any ideas?
Post #: 1
RE: OWA publishing via ISA server 2004 in DMZ - 8.Sep.2006 2:51:30 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Al,

Moving the unihomed "hork mode" ISA Firewall installations to the Web proxy section.

Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to albracco)
Post #: 2
RE: OWA publishing via ISA server 2004 in DMZ - 8.Sep.2006 7:43:31 PM   
albracco

 

Posts: 10
Joined: 5.Sep.2006
Status: offline
OK - do you have any thoughts on my question?

(in reply to tshinder)
Post #: 3
RE: OWA publishing via ISA server 2004 in DMZ - 9.Sep.2006 4:59:44 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Yeah, don't use hork mode and correctly and fully deploy the ISA Firewall.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to albracco)
Post #: 4
RE: OWA publishing via ISA server 2004 in DMZ - 11.Sep.2006 10:15:45 PM   
albracco

 

Posts: 10
Joined: 5.Sep.2006
Status: offline
Sorry, but what do you mean by "hork"?

(in reply to tshinder)
Post #: 5
RE: OWA publishing via ISA server 2004 in DMZ - 12.Sep.2006 3:56:39 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
http://www.urbandictionary.com/define.php?term=horked

Definitions 1 and 2 are best.

You break the ISA Firewall's protection when you use unihomed hork mode. Why not fully deploy the ISA Firewall and get complete protection?

Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to albracco)
Post #: 6
RE: OWA publishing via ISA server 2004 in DMZ - 12.Sep.2006 5:57:08 PM   
albracco

 

Posts: 10
Joined: 5.Sep.2006
Status: offline
From Reading "ISA Server 2004 unleashed", it appeared that would be best for my scenario.

(in reply to tshinder)
Post #: 7
RE: OWA publishing via ISA server 2004 in DMZ - 13.Sep.2006 2:35:20 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
You read the wrong book.

Check the one in my sig.

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to albracco)
Post #: 8
RE: OWA publishing via ISA server 2004 in DMZ - 14.Sep.2006 3:50:52 AM   
albracco

 

Posts: 10
Joined: 5.Sep.2006
Status: offline
LOL - IYHO...

They need to keep their existing hardware firewall and I had previously setup a Linux server in the DMZ to act as a mail relay/bastion host. I thought replacing the Linux server with ISA would be an improvement and add ability to publish OWA securely, and add RPC over HTTP access and OMA for remote users.

Thanks for your comments - Al

(in reply to tshinder)
Post #: 9
RE: OWA publishing via ISA server 2004 in DMZ - 14.Sep.2006 3:17:37 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Al,

If this is a situtation of kicking out Linux, then let's give it a try

What problems are you running into?

Thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to albracco)
Post #: 10
RE: OWA publishing via ISA server 2004 in DMZ - 14.Sep.2006 8:27:31 PM   
albracco

 

Posts: 10
Joined: 5.Sep.2006
Status: offline
Well, my initial post describes the problem...

(in reply to tshinder)
Post #: 11

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Cache] >> General >> OWA publishing via ISA server 2004 in DMZ Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts