Can't Publishing POP3 behind ISA2004 EE with FE-BE exchange 2003 SP2 designed

  • From: "Wittaya Lee" <wittalee@xxxxxxxxxxxxxxxxxx>
  • To: isalist@xxxxxxxxxxxxx
  • Date: Thu, 16 Mar 2006 05:07:56 -0700

  Dear All,

    I have forced to publishing POP3 services on the ISA2004 EE with SP2,
even I already configured published OWA, and RPC over HTTP.  The ISA is
designed as a back-end firewall.  Exchange Front-end and Back-end are sit
in the Secusre Zone.   I have to publishing POP3 for branches, and
internal Head office.  At the internal Head office, I decided to set
Outlook point directly to Exchange Front-end. And it work just fine.  The
problem is on the Branches.  I configured ISA to publish POP3 with
listening on Perimeter Network, Protocol POP3 Server (as publishing rule
autometic generated or 110 inbound), and TO Exchange Front-end. I put the
IP-address of Exchange Front-end and POP3.comany.com address in hosts
file.  Then, I configured Outlook express to connect POP3 server with ISA'
IP-address on the Perimeter network card. And place the Client on the DMZ
zone.  When tried to connect the server with Outlook express, it has an
error shown the connection to the server has failed Accout 'Test', Server
' POP3.company.com', Port 110, Secure(SSL): No, Socket Error:10061, Error
Number 0x800CC0E.  I'd monitored the ISA, and log shown only POP3 Outbound
Initialed and Closed.  No POP3 inbound as Publishing rule connection
attemped.  The same error occured when I configured Outlook Express at
Branch Office to connect POP3 server as the real address.  The front End
firewall maps static NAT to ISA server.  Well, does Any one know how to
configured publishing POP3 as in my organization network?   The following
is the Network Diagram (in Text mode) :

  Branch Client --Outlook Express ---> Front-End Firewall -----Allow POP3
-------> ISA2004EE (Publishing POP3) ---------> Exchange Front-End
-------> Exchange Back-End


In coming

 Branch Client  ---NAT--> Front-End Firewall ----Static NAT only POP3
service---> ISA2004 EE --ROUTE---> Exchange Front-End  ----ROUTE--->
Exchange Back-End

Out going
 
 Branch Client 
<--NAT --- Front-End Firewall <--------NAT------ ISA2004 EE 
<----Route--Exchange Front-End  <-------Route --- Exchange Back-End

Please help, and Thank you in advance,

Witt
   


Other related posts: