MM&M UG UK

Does it have to be two separate links for Internal and external?

 

I can access mail2.domainname.com/owa fine from outside of our network, but can’t internally. In order for me to access OWA within our network, I have to use the FQDN.

I like to be able to use just one link MAIL2.DOMAINNAME.COM for internal as well as external.

 

Your help is greatly appreciate it!

 

Sherpa

 

Hi,

Tell me a little more about your setup.

Is this a single site or multi site setup? Where are your internet connections placed?

Cheers

Nathan

---

Nathan Winters - MVP Exchange Server
MCSE & MCSA 2000 & 2003 + Messaging, MCITP Exchange 2007, MCP, VMWare VCP v2 & v3.

Welcome to the Microsoft Messaging and Mobility User Group: http://www.mmmug.co.uk

Nathan,

Thank you for getting back to me.

This is a single site setup. Just one AD Domain, I have T1 connection to the internet. Server role is set as "Hub Transport, Client Access, Mailbox" .

I want to be able use same link mail2.domain.com internal (within my Network) or external (outside of my network)

As of right now, i can access mail2.domain.com fine from outside, but I have to use the FQDN within my network.

 

Thanks!

Sherpa

 

 

Hi,

Ok that should be possible.

Firstly what certificates have you got on the server? Does it cover the mail2.domain.com URL.

Secondly have you got an A record in your internal DNS for mail2.domain.com?

Finally if all the above are OK, you can change the InternalURL field for the various virtual directories so it uses the mail2.domain.com URL.

Post back with the answers to the above and I will send a script which will make the changes when I am at work tomorrow.

Cheers

Nathan

---

Nathan Winters - MVP Exchange Server
MCSE & MCSA 2000 & 2003 + Messaging, MCITP Exchange 2007, MCP, VMWare VCP v2 & v3.

Welcome to the Microsoft Messaging and Mobility User Group: http://www.mmmug.co.uk

Nathan

I am very sorry not getting back to you in time.

Answer to you questions:

No..We don't use Certificates on the server and not sure if it covers the mail2.domain.com URLNo, there is no A record within our internal DNS.

Sorry I don't have better answer for you :(

Sherpa

In that case, you need certificates!

Especially if this box is being access outside the org.

Have you actively removed the certs or are you using the default self signed cert?

Take a look at my blog post here:

http://www.mmmug.co.uk/blogs/nweb/archive/2008/01/17/1958.aspx

Once certs are setup, create an internal A record for the URL and then change the InternalURL fields to that URL.

Cheers

Nathan

---

Nathan Winters - MVP Exchange Server
MCSE & MCSA 2000 & 2003 + Messaging, MCITP Exchange 2007, MCP, VMWare VCP v2 & v3.

Welcome to the Microsoft Messaging and Mobility User Group: http://www.mmmug.co.uk

Hi Nathan,

Thanks for this blog comments. I am in the process of testing... would you recommend buying a SAN certificate now and use it in the testing phase? This would reduce the downtime later (during implementation) as no need to wait for response and CAS can be implemented at once.

Also, if I have a CAS behind an ISA server, do i send the CSR from CAS or from ISA????

Any help would be much appreciated.

Ioana

Hi,

Getting a cert now would be OK so long as the names were correct.

It would generally be requested from the CAS box and then exported to the ISA box.

 

It is therefore important to ensure that the private key is exportable.

 

Another option would be to use and internally generate cert for testing.

Cheers

Nathan

---

Nathan Winters - MVP Exchange Server
MCSE & MCSA 2000 & 2003 + Messaging, MCITP Exchange 2007, MCP, VMWare VCP v2 & v3.

Welcome to the Microsoft Messaging and Mobility User Group: http://www.mmmug.co.uk