quote:

ORIGINAL: yba

Hi Tom,
Thank you for the article and the support.
quote:

" the name on the Public tab in the OWA Web Publishing Rule is incorrect"
 
That does not apply in this case.
We have a public domain name (hosted and managed by an IPS) and another internal domain name.  I, now, understand your recommendation of identical internal and external domain names.  But that's a future plan.
We have Exchange 2k3 SP1 on Server 2k3 and ISA 2k4 SP1 on Server 2k3.  Internally, two scenarios:
A - OWA works fine when using the FQDN of the Exchange box.
B - An error that ISA Server has denied access to the specifed URL when using the public name.
For now, I followed the rules in the guide and also modified the HOSTS file (temporarily not using SSL and using Integrated-Windows Authentication instead) but from any external host, the return is the following:
Problem Report
Condition TCP error was detected while attempting to retrieve the URL: 'http://mymailserver.MYCOMPANYNAME.com/exchange'.
Problem Description:  TCP/IP processing failure.
Try RELOADING the page.
This error message means that the target host did not properly respond to HTTP GET request after successfully establishing TCP connection. This may be due to problems like congestion on target host or transmission path.
If this problem persists for extended periods of time, contact your network support team. Please, first make sure that the target is really reachable and not, for example, out of service due to maintenance.
Current GMT Date/Time: Mon, 26 Dec 2005/14:58:53

What is the problem here?
Thanks
Yba

P. S. I forgot to mention that mx records point to our ISA server with a public IP.
Moreover, is there any particular entry in the DNS zone to bind the internal Exchange server IP with to the public name?

quote:

ORIGINAL: christianusaj

Hi, I followed the guide for publishing my OWA with ISA Server 2004 step by step but without any certificates and using standard port 80 for the external web listener. IIS listens on port 81 on the internal interface. With this settings OWA works only from internal network.
When I try to access it from internet I get the login window and after I press on "OK" the browser loads the two frames of OWA 2003, but only the structure, not its contents. In the status bar I can see: "Opening http://128.1.1.100:81/exchange/xxxxxx......" and after a while I get error. That is the address of OWA on internal network. Is obvious that it will never work from internet, but I don't know why is trying to open in this way from internal to external instead of doing the correct routing. I created the hosts file but still get that message.
Thanks for your help

Christian

quote:

ORIGINAL: yba

Dear Tom,
Once again, thank you for your support and thank you for your prompt reply.
It works.  I have not implemented SSL but it works, internally and externally.  Amazingly, to me of course, the only thing that I had to change was the port on the listener and the bridging (no HOSTS modification on ISA box.)  It refused to work on port 80 (the same return as in my previous message.) But, when I used port 81 instead, it worked perfectly.
Now, step two (I pray that there are no sniffers installed on any part of my network) is to enforce security.
If I clearly understood your article, I have two reservations:
1 - We need to modify the HOSTS file on the client machine, which might be a PC in a hotel's business center, and
2 - We must install the same certificate on the client machine (this is why I believe we published the enrolment site), which, again, might be a PC in a hotel's business center.
If that's right, then the only practical way of using secure OWA is from one's own laptop, which will be no hassel making these two preparation steps.
The reason for this debate is to ask you for a short-cut so to enforce security for road warriors with minimal hassel on third party PC's.
Besides, does FBA provide any sort of encryption or I may have to abandon external OWA till security is enforced?
And before I forget, thank you once more.
Regards
Yba

P. S. I have a trial version on Exchange 2k3 SP1. Do you know why only the first three users to use OWA are internally (I have not tried it externally) allowed access?  Everyone else is denied access.

quote:

ORIGINAL: stoppen

Hello Tom,

Thanks for the article. I followed the steps but it won't work. When I go to https://webmail.mycompany.nl/exchange/ I first get the Securtity warning and then:

The page cannot be displayed
Error Code: 500 Internal Server Error. The network logon failed. (1790)

Any ideas what goes wrong? ISA 2004 on Windows 2000 Server, Exchange 2003 on Windows 2000 Server too.