RE: Internet Access and OWA access

  • From: "Alex Gonzalez" <AGonzalez@xxxxxxxxxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Tue, 2 Aug 2005 10:02:09 -0400

Well I dont have the 350 so here you go.  
 
1. IP addressing information on the ISA firewall's NIC?
IP:       172.27.0.25
GW:   172.27.0.1
DNS:  10.1.25.42  and .26
 
2. Exact config of the Web Publishing Rule?
I'll walk you through click by click of this

                1.  Publish new mail server
                2.  Web clientaccess
                3.  Just OWA selected
                4.  Secure connections only
                5.  IP 10.1.25.12
                6.  Public name mail.company.com  Same as on cert
                7.  Listener config
                     7a.  Network is internal IP address 172.27.0.27 This is an 
additional address on the server as well
                     7b.  Preferences is enable HTTP and enable HTTPS. 
                     7c.  I installed the cert on the server and chose it when 
I enabled HTTPS
                     7c.  Authentication is integrated
                8.  User sets is All users

 
3. Common/subject name on the Web site certificates bound to the OWA listener 
and OWA Web site?
    They are both the same mail.company.com.  I would rather not publish that 
info on here.
4. Cocktail napkin network diagram that includes only the players in the 
scenario.
See Attached.  The vertical lines indicate firewall's.  
 
And for the record, this is not my idea of the design. I am just implementing 
someone elses design.  I f

________________________________

From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
Sent: Tue 8/2/2005 9:39 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Internet Access and OWA access


http://www.ISAserver.org

Hi Alex,
 
OK, you've taken enough punished for deploying a unihomed ISA firewall :-)
 
Now, lets solve your problem.
 
1. IP addressing information on the ISA firewall's NIC?
 
2. Exact config of the Web Publishing Rule?
 
2A. Exact config of Web listener
 
3. Common/subject name on the Web site certificates bound to the OWA listener 
and OWA Web site?
 
4. Cocktail napkin network diagram that includes only the players in the 
scenario.
 
You can answer these questions, or send me a check for three-fiddy and I'll 
read your ISAinfo printout and answer them for you ;-)
Tom
www.isaserver.org/shinder <http://www.isaserver.org/shinder> 
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7> 
MVP -- ISA Firewalls

 


________________________________

        From: Alex Gonzalez [mailto:AGonzalez@xxxxxxxxxxxxxxxxxxx] 
        Sent: Tuesday, August 02, 2005 8:26 AM
        To: [ISAserver.org Discussion List]
        Subject: RE: [isalist] RE: Internet Access and OWA access
        
        
        Tom,
         
        Could you just point me in the general direction I need to research to 
be able to publish OWA and other sites from the internal network through a 
single homed ISA server that is located in a DMZ?  Your confusing the crap out 
of me.  LOL.
         
        Alex
         
        
        
        
        
        

________________________________

        From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
        Sent: Tue 8/2/2005 8:51 AM
        To: [ISAserver.org Discussion List]
        Subject: [isalist] RE: Internet Access and OWA access
        
        
        http://www.ISAserver.org
        
        Hi Alex,
         
        Remember, the ISA firewall was designed to be a NETWORK FIREWALL -- the 
unihomed breakages don't follow the core design principles, so you have to 
think of it as an exception. The ISA firewall is not Proxy Server X.X
         
        Its in the book! :-)
        Tom
        www.isaserver.org/shinder <http://www.isaserver.org/shinder> 
        Tom and Deb Shinder's Configuring ISA Server 2004
        http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7> 
        MVP -- ISA Firewalls

         


________________________________

                From: Alex Gonzalez [mailto:AGonzalez@xxxxxxxxxxxxxxxxxxx] 
                Sent: Tuesday, August 02, 2005 7:31 AM
                To: [ISAserver.org Discussion List]
                Subject: RE: [isalist] RE: Internet Access and OWA access
                
                
                Tom,
                 
                Really? Then what is the External network listed under networks 
mean?  It says it represents the Internet and I can add it to access rules.  
                 
                Alex

________________________________

                From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
                Sent: Mon 8/1/2005 9:28 PM
                To: [ISAserver.org Discussion List]
                Subject: [isalist] RE: Internet Access and OWA access
                
                
                 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as: 
agonzalez@xxxxxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 08-2005