Hello, Do you have the ports for the CRL on the MS Certificate Server ? Your clients are probably trying to access the Certificate Revocation List(CRL) on your Certificate Server. Eventually this will timeout and the connection will be made. Check your firewall logs for attempted connections to your Certsrv on port 389 and port 80. Normally there are two published CRLs one LDAP and one HTTP. Bill -----Original Message----- From: Jeffrey Robillard [mailto:jrobill@xxxxxxxxxxxxx] Sent: Wednesday, April 02, 2003 1:50 PM To: [ExchangeList] Subject: [exchangelist] HTTPS OWA horribly slow through firewall http://www.MSExchange.org/ We recently installed MS Certificate server on one of our machines and regenerated the cert that OWA was using so its from MS Cert Server instead of the previous cert which was from Novell Cert Server. Since that time OWA is so horribly slow when accessed through the firewall, which it wasn't using the Novell Cert. Internally its normal speed, but externally it can take 3 minutes before the login screen even shows up. Any ideas? Thanks. Free Anti-Spam Download: Try Multi-layered, Accurate Spam Filtering with SurfControl E-mail Filter http://www.surfcontrol.com/go/zmsexdl1 ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this MSExchange.org Discussion List as: wtholmes@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')