Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
SSL OWA works ok externally but not internally
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
SSL OWA works ok externally but not internally - 19.Mar.2004 12:57:00 PM
|
|
|
awj
Posts: 104
Joined: 26.Feb.2004
From: UK
Status: offline
|
I have OWA setup on a public address using SSL with my own certificate authority eg webmail.acme.com. This works fine when you connect externally but it you try to connect internally you get
<TD width
The page cannot be displayed
In the browser, any ideas on what is causing this and how to fix it?
|
|
|
|
|
RE: SSL OWA works ok externally but not internally - 19.Mar.2004 12:59:00 PM
|
|
|
awj
Posts: 104
Joined: 26.Feb.2004
From: UK
Status: offline
|
Sorry should also have said my rule allows the SSL traffic to come from anywhere to the Exchange server and i have SSL bridging ie it is encrypted inside and outside the Firewall.
|
|
|
|
|
RE: SSL OWA works ok externally but not internally - 21.Mar.2004 5:35:00 PM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Al,
Internal clients should not access internal servers through the firewall. Instead, configure the Web proxy clients with the autconfig script (or just have them autodetect and enable autodiscovery on the firewall) and then configure the firewall to instruct the Web Proxy clients to use Direct Access for internal domains and addresses.
You'll find these config options in the Properties of the Internal network.
HTH,
Tom
|
|
|
|
|
RE: SSL OWA works ok externally but not internally - 22.Mar.2004 11:30:00 AM
|
|
|
adelprete
Posts: 42
Joined: 11.Jan.2004
From: Rome, Italy
Status: offline
|
Tom, is there a specific reason to why you say that internal clients should not use the proxy?
I've a split dns infrastructure and I've published OWA via SSL via public IP also for internal clients and everything's perfect.
|
|
|
|
|
RE: SSL OWA works ok externally but not internally - 23.Mar.2004 4:03:00 AM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Alessandro,
Looping back through the firewall puts unnessary strain on the firewall resources and isn't required to access Internal resources.
HTH,
Tom
|
|
|
|
|
RE: SSL OWA works ok externally but not internally - 23.Mar.2004 10:36:00 AM
|
|
|
awj
Posts: 104
Joined: 26.Feb.2004
From: UK
Status: offline
|
Ok i made sure that Internet Explorer is set to bypass the proxy for all addresses starting 192.168 (which would include my internal exchange server)
I also added a host A record to my internal DNS for the name of the outlookwebmail.acmecorp.com and if i tracert it internally it goes to the correct server (i also now sometimes get asked for windows authentication but never see the Outlook form i get from externally). Then i still get the same message as before, any ideas?
|
|
|
|
|
RE: SSL OWA works ok externally but not internally - 23.Mar.2004 12:13:00 PM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Al,
The Web Proxy clients need to be configured to use the autoconfiguration script. You can manually config the browser, set this up via Group Policy, or the easiest why is to configure the client to autodiscover (which is the browser's default setting).
You'll need a wpad entry in DNS/DHCP, and enable autodiscovery publishing on the firewall. I use this at every site and it always works a treat!
HTH,
Tom
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
