What he is referring to is if you are using some type of NAT. Your Exchange
server is probably on a IANA reserved IP address (like 192.168.x.x or
10.x.x.x.). If that is the case, then on your firewall you have forwarding
rules that will forward the external IP address to the internal one;
however, it's not just the IP address but the port and protocol. IF you
look at your firewall rules, you probably have TCP port 25 and TCP port 80
currently forwarded to your mail server. You will also need create a
similar rule for TCP port 443.
> I dont understand. What to do you mean by FORWARD it to the exchange
> IP? I should just allow ssl traffics thru the firewall, and then they
> type the address using https (https:\\myservername\exchange) and they
> can check their email, right?
> I have verified that ssl traffic is allowed thru the firewall, but I
> dont know what you mean by forwarding.
> Color me confused
> (I stay that color ever since I started working with exchange)
> > I have it open, but how do I forward it to the exchange server's IP? I
> > have missed that part.
> > gary
> > "Lanwench [MVP - Exchange]"
> > > Do you have port 443 open in your firewall, forwarded to your Exchange
> > > server's internal IP?
> > > > Okay, here is the deal. I have Windows 2000 server, sp3, running
> > > > exchange 2000 sp3. It is my only Windows 2000 server and I have OWA
> > > > running on it. The domain is mixed. I purchased a certificate from
> > > > a 3rd party company so I can do SSL with OWA, installed it, and
> > > > checked it here at the office, and it works fine. The user has to
> > > > type https instead of http to get to his email when using OWA.
> > > > BUT, when you are outside the company, accessing via the internet,
> > > > does not work.
> > > > I verified it here using a dialup account. If you try it with
> > > > you get the message that you need 128 bit encryption, if you try it
> > > > with https, you get the "the page cannot be displayed " error.
> > > > I go to tools - advanced- security and ssl 2.0 and 3.0 is checked,
> > > > and I have tried it with and without tls 1.0 checked.
> > > > Help, Please, Somebody? Anybody?