Welcome to ISAserver.org

Web Listeners for OWA

Users viewing this topic: none

Logged in as: Guest

Printable Version

All Forums >> [ISA 2006 Publishing] >> Exchange Publishing >> Web Listeners for OWA

Page: [1]

Message

<< Older Topic Newer Topic >>

Web Listeners for OWA - 9.May2008 2:34:35 PM

Eldon

Posts: 9
Joined: 28.Jun.2007
Status: offline

I currently have one (1) Secure Web Listener for my published OWA, and it is used for access for both my internal and external networks. I have moved my ISA 2006 box to be a domain member, and now wish to create one listener for my Internal Network (where I want All Authenticated Users to have access) and one listener for my External Network (whe I want only select Windows (domain) groups to have access.

The Web Listener I have now listens over 443 to both my internal network (10.104.x.x) and external network (192.168.x.x). I have now created separate Internal Interface and External Interface listeners, but when I am trying to save my changes to each of the new listeners, I get an error "A web listener specifying the same port and similar IP addresses is alrady used by rule XXXX. The port and IP Addresses specified in a Web Listener cannot overlap with the IP Addresses and ports specified in another Web Listener already used in a different rule"

My new rules with these new listeners are currently disabled - do I have to enable them to get this error to go away, or do I have to disable or delete the existing listener that currently handles both internal and external access?

Post #: 1

Featured Links*

RE: Web Listeners for OWA - 19.May2008 11:05:53 AM

tshinder

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline

You only need a single Web Listener. Delete the "internal" listener and configure the "external" listener to listen on the Internal Network too.

Make sure you have created your split DNS entry so that Internal users are directed to the internal IP address of the ISA Firewall for the name, instead of the external interface.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to Eldon)

Post #: 2

RE: Web Listeners for OWA - 19.May2008 12:28:30 PM

Eldon

Posts: 9
Joined: 28.Jun.2007
Status: offline

But with one listener, how can I achieve the following (as stated in post)?:

"I have moved my ISA 2006 box to be a domain member, and now wish to create one listener for my Internal Network (where I want All Authenticated Users to have access) and one listener for my External Network (whe I want only select Windows (domain) groups to have access."

I want everyone on my LAN to have access but limit access from the outside to select domain groups.

Thanks!

(in reply to tshinder)

Post #: 3

RE: Web Listeners for OWA - 20.May2008 8:17:35 AM

tshinder

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline

Ah, OK, then configure a second listener.

However, I *think* you can use the same listener for a second rule that has the different authentication requirements.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to Eldon)

Post #: 4