DrayTek UK Users' Community Forum
Help, Advice and Solutions from DrayTek Users
port forwarding SBS 2008 RWW not working
- cengizulusahin
- Topic Author
- Offline
- New Member
Less
More
- Posts: 4
- Thank you received: 0
12 Jun 2009 13:24 #56288
by cengizulusahin
port forwarding SBS 2008 RWW not working was created by cengizulusahin
Hi,
I'm not sure if I'm doing the port forwarding right with this router.
Basically I have a SBS 2008 box behind the Vigor 2820. I forwarded the required ports such as port 25, 80, 443 and 1723 to the local server IP address using the Open Ports Console under NAT. It looks like I can receive and send emails and dial in to my server. But the FQDM of my server is not recognised outside the network.
This morning when I put in my servers FQDM in to ie, I ended up at the router authentication panel, instead of RWW. I double checked the remote managment settings and realised that the router managment was set for port 80. I changed it to port 8080. I disabled all remote managment methods except HTTP. Now I can I access the router by putting my servers FQDN:8080. All good but I still get nothing when I put my FQDM. I can ping it though.
This is a new router. I just replaced it yesterday. The FQDM was working with the previous router. So it can't be server issue.
Please help
I'm not sure if I'm doing the port forwarding right with this router.
Basically I have a SBS 2008 box behind the Vigor 2820. I forwarded the required ports such as port 25, 80, 443 and 1723 to the local server IP address using the Open Ports Console under NAT. It looks like I can receive and send emails and dial in to my server. But the FQDM of my server is not recognised outside the network.
This morning when I put in my servers FQDM in to ie, I ended up at the router authentication panel, instead of RWW. I double checked the remote managment settings and realised that the router managment was set for port 80. I changed it to port 8080. I disabled all remote managment methods except HTTP. Now I can I access the router by putting my servers FQDN:8080. All good but I still get nothing when I put my FQDM. I can ping it though.
This is a new router. I just replaced it yesterday. The FQDM was working with the previous router. So it can't be server issue.
Please help
Please Log in or Create an account to join the conversation.
- louis-m
- Offline
- Member
Less
More
- Posts: 131
- Thank you received: 0
12 Jun 2009 15:50 #56290
by louis-m
2820 = 3.3.2_RC5
2950 = 3.2.4
Replied by louis-m on topic port forwarding SBS 2008 RWW not working
ummmm.....
close port 80 for a start! remote web workplace needs 443 & 4125
have you got your external dns setup right eg A & MX records?
close port 80 for a start! remote web workplace needs 443 & 4125
have you got your external dns setup right eg A & MX records?
2820 = 3.3.2_RC5
2950 = 3.2.4
Please Log in or Create an account to join the conversation.
- cengizulusahin
- Topic Author
- Offline
- New Member
Less
More
- Posts: 4
- Thank you received: 0
15 Jun 2009 13:23 #56324
by cengizulusahin
Replied by cengizulusahin on topic port forwarding SBS 2008 RWW not working
As I said before, it's not a server issue, so ext DNS is all good. The FQDM was working before replacing the router. It's something to do with the port arrangements on the router.
What do you mena by disable port 80? You mean on the router.
Port 4125 is already forwarded, it doesn't change anything.
What do you mena by disable port 80? You mean on the router.
Port 4125 is already forwarded, it doesn't change anything.
Please Log in or Create an account to join the conversation.
- louis-m
- Offline
- Member
Less
More
- Posts: 131
- Thank you received: 0
16 Jun 2009 08:03 #56341
by louis-m
2820 = 3.3.2_RC5
2950 = 3.2.4
Replied by louis-m on topic port forwarding SBS 2008 RWW not working
ok...
INTERNALLY (sbsXXXX)
i would imagine you should be able to reach your server by typing in:
1.https://your server lan ip
2.https://servername
3.https://servername.domain.local (whatever you set up eg .local)
you will NOT be able to reach it by typing in:
https://servername.domain.co.uk (external fqdn) as this is loopback which drayteks do not do.
EXTERNALLY
you will reach it on:
1.https://server wan ip
2.https://servername.domain.co.uk (fqdn)
INTERNALLY (sbsXXXX)
i would imagine you should be able to reach your server by typing in:
1.
2.
3.
you will NOT be able to reach it by typing in:
EXTERNALLY
you will reach it on:
1.
2.
2820 = 3.3.2_RC5
2950 = 3.2.4
Please Log in or Create an account to join the conversation.
- cocospm
- Offline
- Member
Less
More
- Posts: 100
- Thank you received: 0
16 Jun 2009 09:29 #56350
by cocospm
You need to forward only TCP ports 25, 443, and 4125 to your SBS. You should not open port 80 - it is not needed and is a definite security risk.
Also, do not forward port 1723 from your router to your SBS. If you are using a PPTP VPN on your SBS (Why? It is not needed or advised in most cases, especially if you are using RWW), you also need to forward the GRE protocol (not 'port') to your SBS. To do this, just make sure your 2820 enables PPTP pass-through (by unchecking the box "Enable PPTP VPN Service" in the 2820's VPN section).
Re louis-m's summary of URL usage... if you use different URLs locally to access RWW, OWA and Sharepoint than you do remotely, you will encounter SSL certificate errors locally (due to mismatched certs). Assuming you have generated the SSL cert on you SBS for your external FQDN, then simply add a forward-lookup zone to your SBS's DNS server that resolves your FQDN to your SBS's local IP address. Then you can use the same (FQDN) URLs wherever you are.
Replied by cocospm on topic port forwarding SBS 2008 RWW not working
As I said before, it's not a server issue, so ext DNS is all good. The FQDM was working before replacing the router. It's something to do with the port arrangements on the router.cengizulusahin wrote:
What do you mena by disable port 80? You mean on the router.
Port 4125 is already forwarded, it doesn't change anything.
You need to forward only
Also, do not forward port 1723 from your router to your SBS. If you are using a PPTP VPN on your SBS (Why? It is not needed or advised in most cases, especially if you are using RWW), you also need to forward the GRE protocol (not 'port') to your SBS. To do this, just make sure your 2820 enables PPTP pass-through (by unchecking the box "Enable PPTP VPN Service" in the 2820's VPN section).
Re louis-m's summary of URL usage... if you use different URLs locally to access RWW, OWA and Sharepoint than you do remotely, you will encounter SSL certificate errors locally (due to mismatched certs). Assuming you have generated the SSL cert on you SBS for your external FQDN, then simply add a forward-lookup zone to your SBS's DNS server that resolves your FQDN to your SBS's local IP address. Then you can use the same (FQDN) URLs wherever you are.
Please Log in or Create an account to join the conversation.
Moderators: Chris, Sami
Copyright © 2024 DrayTek