[THIN] Re: OT: Access Exchange from outside firewall

  • From: "Daniel Sidler" <daniel.sidler@xxxxxx>
  • To: <thin@xxxxxxxxxxxxx>
  • Date: Thu, 13 Mar 2003 21:59:16 +0100

It might overkill, but take a look at XTNDConnect Server. See
http://www.extendedsystems.com

> -----Original Message-----
> From: Bill Sorenson [mailto:bsorenson@xxxxxxxxxx]=20
> Sent: Thursday, March 13, 2003 12:11 AM
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: OT: Access Exchange from outside firewall
>=20
>=20
>=20
> Anyone have a solution for syncing Palms over the Internet? =20
> We're struggling with the same thing and looking at=20
> implementing the VPN solution to allow both Outlook and Palm.
>=20
> Bill Sorenson
>=20
> -----Original Message-----
> From: Chris Lynch [mailto:lynch00@xxxxxxx]
> Sent: Wednesday, March 12, 2003 4:31 PM
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: OT: Access Exchange from outside firewall
>=20
>=20
>=20
> =3D3D20
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>=20
> Again, to protect your data, you will need to implement a VPN=20
> solution.  NEVER open ports that have common exploits, like=20
> the RPC service or even NetBIOS services.  If you don't want=20
> to put in a VPN solution, then look at ISA with SP1.  I have=20
> heard that it works quite well.
>=20
> Chris
>=20
> - -----Original Message-----
> From: thin-bounce@xxxxxxxxxxxxx=20
> [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Vince Tan
> Sent: Wednesday, March 12, 2003 2:26 PM
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: OT: Access Exchange from outside firewall
>=20
>=20
>=20
> They need to sync to their mailbox for when they are on the=20
> road.  I might have to use pop or trying imap now.  Or might=20
> have to use VPN.
>=20
> Vince
>=20
> - -----Original Message-----
> From: Chris Lynch [mailto:lynch00@xxxxxxx]=3D3D3D20
> Sent: Wednesday, March 12, 2003 5:09 PM
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: OT: Access Exchange from outside firewall
>=20
>=20
>=20
> =3D3D3D3D20
> - -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>=20
> Correct.  There was just a VERY long discussion in the MS=20
> Security Focus =3D3D mailing list because someone wanted to=20
> open ports to allow an Outlook =3D =3D3D client to directly=20
> attach to an Exchange server from the Internet.
>=20
> Some said to use ISA server, while others (like me) said to=20
> use a VPN =3D =3D3D device.  You NEVER want to open RPC to the=20
> Internet.  You are just =3D3D begging hackers to break into=20
> your system and get critical information.
>=20
> Again, my question goes back to "why are you wanting to open=20
> ports for =3D =3D3D your Exchange server to the Internet?"  Is it=20
> because someone wants to =3D =3D3D get to their mailbox?  If so,=20
> then either publish Outlook, or have them =3D3D connect to OWA=20
> (secured with an SSL certificate).
>=20
> Chris
>=20
> - - -----Original Message-----
> From: thin-bounce@xxxxxxxxxxxxx=20
> [mailto:thin-bounce@xxxxxxxxxxxxx] On =3D =3D3D Behalf Of Ryan Lambert
> Sent: Wednesday, March 12, 2003 2:01 PM
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: OT: Access Exchange from outside firewall
>=20
>=20
>=20
> What are your objectives?
>=20
> I would suggest maybe just POP the box, unless you want the=20
> Exchange =3D3D Address Book/Public Folders/etc. Or better yet,=20
> implement a published =3D =3D3D application via Citrix and create=20
> a connection that way. ;-)
>=20
> Personally, I am not in favor of opening any more ports than=20
> absolutely =3D3D necessary.
>=20
> - - -----Original Message-----
> From: Chris Lynch [mailto:lynch00@xxxxxxx]=3D3D3D3D3D20
> Sent: Wednesday, March 12, 2003 4:48 PM
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: OT: Access Exchange from outside firewall
>=20
>=20
> =3D3D3D3D3D3D20
> - - -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>=20
> Why are you doing this?  You need to open more ports than=20
> what you have =3D3D =3D3D3D3D =3D3D3D3D3D3D selected.  Mainly, the=20
> GC port, port 135, possibly =3D 139. =3D3D Why =3D3D3D not =3D3D3D3D=20
> use a =3D3D3D3D3D =3D3D3D3D3D3D VPN connection?  If =3D you have=20
> =3D3D Windows 2000, use =3D3D3D RRAS. If =3D3D3D3D not, then look=20
> =3D3D3D3D3D3D for =3D a =3D3D project called Wolverine.  It's a=20
> =3D3D3D small =3D3D3D3D distro that will =3D give =3D3D you=20
> =3D3D3D3D3D3D PPTP VPN support.  Very easy to =3D3D3D setup,=20
> =3D3D3D3D and =3D is =3D3D Linux based.
>=20
> Chris
>=20
> - - - -----Original Message-----
> From: thin-bounce@xxxxxxxxxxxxx=20
> [mailto:thin-bounce@xxxxxxxxxxxxx] On =3D =3D3D =3D3D3D =3D3D3D3D=20
> =3D3D3D3D3D =3D3D3D3D3D3D Behalf Of Vince Tan
> Sent: Wednesday, March 12, 2003 1:39 PM
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] OT: Access Exchange from outside firewall
>=20
>=20
>=20
> Hi Everyone,  I've been working on this for the better half=20
> of the day =3D =3D3D =3D3D3D =3D3D3D3D =3D3D3D3D3D =3D3D3D3D3D3D and=20
> can't seem to get anywhere.  I'm =3D trying =3D3D to setup an=20
> =3D3D3D =3D3D3D3D Outlook client =3D3D3D3D3D =3D3D3D3D3D3D to =3D=20
> connect to my =3D3D Exchange 2K server.  The =3D3D3D =3D3D3D3D=20
> Outlook client is outside the =3D3D =3D3D3D3D3D3D firewall=20
> connected via the =3D3D3D internet. =3D3D3D3D  I =3D already =3D3D=20
> setup the =3D3D3D3D3D3D =3D3D3D3D =3D3D=20
> HLKM\System\CurrentControlSet\Service\MSExchangeDS\Parameters,
> HKLM\System\CurrentControlSet\Services\MSExchangeIS\Parameters
> System to =3D3D =3D3D3D3D =3D3D3D3D3D3D point to static port.  I=20
> also configured the =3D firewall =3D3D =3D3D3D already for =3D3D3D3D=20
> those =3D3D3D3D3D3D 2 ports.=3D3D3D3D3D3D3D20
>=20
> When I start the Outlook client, I get "Exchanger server=20
> unavailable". =3D =3D3D =3D3D3D =3D3D3D3D =3D3D3D3D3D =3D3D3D3D3D3D =
Oh, I=20
> also set up the hosts file to =3D point to =3D3D the right ip=20
> =3D3D3D =3D3D3D3D address for =3D3D3D3D3D =3D3D3D3D3D3D the =3D=20
> exchange =3D3D server.
>=20
> Thanks for any help
>=20
> Vince
> *********************************************************
> This Week's Sponsor - RTO Software / TScale
> TScale increases terminal server capacity.=3D3D3D3D3D3D20
> Get 30-40% more users per server to save $$$ and=20
> time.=3D3D3D3D3D3D20 Add =3D =3D3D =3D3D3D users now! - not more=20
> servers. If you're using =3D Citrix,=3D3D3D3D3D3D20 =3D3D you=20
> =3D3D3D3D must =3D3D3D learn about TScale!  Free 30-day eval: =3D=20
> =3D3D3D3D3D3D =3D3D =3D3D3D3D=20
> http://www.rtosoft.com/Enter.asp?ID=3D3D3D3D3D3D3D79
> **********************************************************
>=20
> For Archives, to Unsubscribe, Subscribe or=3D3D3D3D3D3D20
> set Digest or Vacation mode use the below link: =3D3D3D3D3D3D=20
> =3D3D3D3D =3D3D http://thethin.net/citrixlist.cfm
>=20
> - - -----BEGIN PGP SIGNATURE-----
> Version: PGP 8.0
> Comment: Public PGP key for Chris Lynch
>=20
> iQA/AwUBPm+rK29fg+xq5T3MEQINsQCgq4WxDrZuZJE9JhVxA0BWnxkYlk8AnRWW
> ZABgkfxWWkUyQvIfycnqwUGk
> =3D3D3D3D3D3D3D2S9m
> - - -----END PGP SIGNATURE-----
>=20
>=20
> *********************************************************
> This Week's Sponsor - RTO Software / TScale
> TScale increases terminal server capacity.=3D3D3D3D3D20
> Get 30-40% more users per server to save $$$ and=20
> time.=3D3D3D3D3D20 Add =3D =3D3D users now! - not more servers. If=20
> you're using Citrix,=3D3D3D3D3D20 you =3D =3D3D3D =3D3D must =3D3D3D3D =

> learn about TScale!  Free 30-day eval: =3D3D3D3D =3D3D=20
> http://www.rtosoft.com/Enter.asp?ID=3D3D3D3D3D3D79
> **********************************************************
>=20
> For Archives, to Unsubscribe, Subscribe or=3D3D3D3D3D20
> set Digest or Vacation mode use the below link: =3D3D3D3D =3D3D=20
> http://thethin.net/citrixlist.cfm
> *********************************************************
> This Week's Sponsor - RTO Software / TScale
> TScale increases terminal server capacity.=3D3D3D3D20
> Get 30-40% more users per server to save $$$ and=20
> time.=3D3D3D3D20 Add users now! - not more servers. If you're=20
> using Citrix,=3D3D3D3D20 you =3D =3D3D must learn about TScale! =20
> Free 30-day eval: =3D3D3D3D =3D3D=20
> http://www.rtosoft.com/Enter.asp?ID=3D3D3D3D3D79
> **********************************************************
>=20
> For Archives, to Unsubscribe, Subscribe or=3D3D3D3D20
> set Digest or Vacation mode use the below link: =3D3D3D3D =3D3D=20
> http://thethin.net/citrixlist.cfm
>=20
> - -----BEGIN PGP SIGNATURE-----
> Version: PGP 8.0
> Comment: Public PGP key for Chris Lynch
>=20
> iQA/AwUBPm+v8G9fg+xq5T3MEQLsygCg1SLK2rr3OxqK6vU3vfBvFXyX2b0Anisd
> LaNqa1egWFn7bZLqIPvEeZK0
> =3D3D3D3D3DV2mL
> - -----END PGP SIGNATURE-----
>=20
>=20
> *********************************************************
> This Week's Sponsor - RTO Software / TScale
> TScale increases terminal server capacity.=3D3D3D20
> Get 30-40% more users per server to save $$$ and time.=3D3D3D20=20
> Add users now! - not more servers. If you're using=20
> Citrix,=3D3D3D20 you =3D must =3D3D learn about TScale!  Free=20
> 30-day eval: =3D3D http://www.rtosoft.com/Enter.asp?ID=3D3D3D3D79
> **********************************************************
>=20
> For Archives, to Unsubscribe, Subscribe or=3D3D3D20
> set Digest or Vacation mode use the below link: =3D3D=20
> http://thethin.net/citrixlist.cfm
> *********************************************************
> This Week's Sponsor - RTO Software / TScale
> TScale increases terminal server capacity.=3D3D20
> Get 30-40% more users per server to save $$$ and time.=3D3D20
> Add users now! - not more servers. If you're using=20
> Citrix,=3D3D20 you must learn about TScale!  Free 30-day eval:=20
> =3D3D http://www.rtosoft.com/Enter.asp?ID=3D3D3D79
> **********************************************************
>=20
> For Archives, to Unsubscribe, Subscribe or=3D3D20
> set Digest or Vacation mode use the below link: =3D3D=20
http://thethin.net/citrixlist.cfm

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
Comment: Public PGP key for Chris Lynch

iQA/AwUBPm+1Hm9fg+xq5T3MEQKFfgCfTGw3Q2H7dgWnyQIq5xGVgZSlA7EAoMU4
iJd+1qTdcTc0mNtG0lsrttBH
=3D3D3DOIgU
-----END PGP SIGNATURE-----


*********************************************************
This Week's Sponsor - RTO Software / TScale
TScale increases terminal server capacity.=3D20
Get 30-40% more users per server to save $$$ and time.=3D20
Add users now! - not more servers. If you're using Citrix,=3D20 you must
learn about TScale!  Free 30-day eval:
http://www.rtosoft.com/Enter.asp?ID=3D3D79
**********************************************************

For Archives, to Unsubscribe, Subscribe or=3D20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
*********************************************************
This Week's Sponsor - RTO Software / TScale
TScale increases terminal server capacity.=20
Get 30-40% more users per server to save $$$ and time.=20
Add users now! - not more servers. If you're using Citrix,=20
you must learn about TScale!  Free 30-day eval:
http://www.rtosoft.com/Enter.asp?ID=3D79
**********************************************************

For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
*********************************************************
This Week's Sponsor - RTO Software / TScale
TScale increases terminal server capacity. 
Get 30-40% more users per server to save $$$ and time. 
Add users now! - not more servers. If you're using Citrix, 
you must learn about TScale!  Free 30-day eval:
http://www.rtosoft.com/Enter.asp?ID=79
**********************************************************

For Archives, to Unsubscribe, Subscribe or 
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm

Other related posts: