DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

port forwarding SBS 2008 RWW not working

  • cengizulusahin
  • Topic Author
  • Offline
  • New Member
  • New Member
More
12 Jun 2009 13:24 #56288 by cengizulusahin
port forwarding SBS 2008 RWW not working was created by cengizulusahin
Hi,

I'm not sure if I'm doing the port forwarding right with this router.

Basically I have a SBS 2008 box behind the Vigor 2820. I forwarded the required ports such as port 25, 80, 443 and 1723 to the local server IP address using the Open Ports Console under NAT. It looks like I can receive and send emails and dial in to my server. But the FQDM of my server is not recognised outside the network.

This morning when I put in my servers FQDM in to ie, I ended up at the router authentication panel, instead of RWW. I double checked the remote managment settings and realised that the router managment was set for port 80. I changed it to port 8080. I disabled all remote managment methods except HTTP. Now I can I access the router by putting my servers FQDN:8080. All good but I still get nothing when I put my FQDM. I can ping it though.

This is a new router. I just replaced it yesterday. The FQDM was working with the previous router. So it can't be server issue.

Please help

Please Log in or Create an account to join the conversation.

More
12 Jun 2009 15:50 #56290 by louis-m
Replied by louis-m on topic port forwarding SBS 2008 RWW not working
ummmm.....
close port 80 for a start! remote web workplace needs 443 & 4125
have you got your external dns setup right eg A & MX records?

2820 = 3.3.2_RC5
2950 = 3.2.4

Please Log in or Create an account to join the conversation.

  • cengizulusahin
  • Topic Author
  • Offline
  • New Member
  • New Member
More
15 Jun 2009 13:23 #56324 by cengizulusahin
Replied by cengizulusahin on topic port forwarding SBS 2008 RWW not working
As I said before, it's not a server issue, so ext DNS is all good. The FQDM was working before replacing the router. It's something to do with the port arrangements on the router.

What do you mena by disable port 80? You mean on the router.

Port 4125 is already forwarded, it doesn't change anything.

Please Log in or Create an account to join the conversation.

More
16 Jun 2009 08:03 #56341 by louis-m
Replied by louis-m on topic port forwarding SBS 2008 RWW not working
ok...
INTERNALLY (sbsXXXX)
i would imagine you should be able to reach your server by typing in:
1. https://your server lan ip
2. https://servername
3. https://servername.domain.local (whatever you set up eg .local)

you will NOT be able to reach it by typing in:

https://servername.domain.co.uk (external fqdn) as this is loopback which drayteks do not do.

EXTERNALLY

you will reach it on:
1. https://server wan ip
2. https://servername.domain.co.uk (fqdn)

2820 = 3.3.2_RC5
2950 = 3.2.4

Please Log in or Create an account to join the conversation.

More
16 Jun 2009 09:29 #56350 by cocospm
Replied by cocospm on topic port forwarding SBS 2008 RWW not working

cengizulusahin wrote: As I said before, it's not a server issue, so ext DNS is all good. The FQDM was working before replacing the router. It's something to do with the port arrangements on the router.

What do you mena by disable port 80? You mean on the router.

Port 4125 is already forwarded, it doesn't change anything.


You need to forward only TCP ports 25, 443, and 4125 to your SBS. You should not open port 80 - it is not needed and is a definite security risk.

Also, do not forward port 1723 from your router to your SBS. If you are using a PPTP VPN on your SBS (Why? It is not needed or advised in most cases, especially if you are using RWW), you also need to forward the GRE protocol (not 'port') to your SBS. To do this, just make sure your 2820 enables PPTP pass-through (by unchecking the box "Enable PPTP VPN Service" in the 2820's VPN section).

Re louis-m's summary of URL usage... if you use different URLs locally to access RWW, OWA and Sharepoint than you do remotely, you will encounter SSL certificate errors locally (due to mismatched certs). Assuming you have generated the SSL cert on you SBS for your external FQDN, then simply add a forward-lookup zone to your SBS's DNS server that resolves your FQDN to your SBS's local IP address. Then you can use the same (FQDN) URLs wherever you are.

Please Log in or Create an account to join the conversation.

Moderators: ChrisSami