Thread Info
  • Locked Locked
  • Replies 10 replies
  • Subscribers 1 subscriber
  • Views 46435 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

how to publish owa and anywhere on one ip address and same certificate - UTM 9.3 sg210

Sophos2015

Hi,folks

I tried to publish owa and anywhere (internal exchange server) but I got an error(see attached file.pic1)

The virtual web server domain name 'External (WAN) [192.168.213.167 (OWA)] (Address):443:owa.mydomain.ru' is already in use by the domain list attribute of the virtual webserver object 'Exchange etc services'.

and I found only one way to fix this error - I add the same ip address with new description in Interface&Routing - interfaces-additional addresses

then I edited my virtual web server and changed interface with new settings

after that a I was able to turn on - webserver

is it correct ?  



This thread was automatically locked due to age.
Parents
  • With a SAN certificate you are able to use different subdomains and a virtual webserver each.
    If you like to use different profiles for the same virtual webserver, you can define one virtual webserver and use different exceptions.
    See www.sophos.com/.../120454.aspx
  • in reply to NvA
    NvA, I found my error on www.astaro.org/.../53891-utm-9-2-exchange-server-2010-a.html and this two topics (see. below) explained problem

    ---------------------------- wrote by juve
    With Forefront TMG only one SSL certificate is required
    With Fortigate only one SSL certificate is required
    With Checkpoint only one SSL certificate is required

    Why UTM 9.2 require 3 certificates for the same host this is crazy

    I must also make 3 DNS A records, modifiy internal and external urls on exchange console to reflect this and reconfigure my iphone fleet

    Can I publish my exchange server with only one virtual web server and make a fusion of all firewall profiles o should I sold my product on ebay ?

    I think that i'm gonna switch to another brand of firewall

    Thanks a lot again for your help
    ---------------------------- wrote by James@Frasca
    I was able to get outlook web access, outlook anywhwere, and active sync all working under a single domain.

    Everything needs to be done under 1 virtual server and 1 firewall profile.
    The profile just has "pass through outlook anywhere" and "block clients with a bad reputation". I tried a few security checks, but it broke outlook anywhere, even if I turned off the check in the exception rule for RPC.

    I made an exception for RPC so it doesn't even check for bad clients, maybe not necessary, haven't confirmed.

    The virtual server has
    HTTPS & Redirect
    Links to exchange profile
    Pass Host Header checked
    -----------------------------
  • in reply to Sophos2015
    Hi Sophos2015,

    here is a very good howto for the owa/activesync with waf: http://networkguy.de/?p=998
    You can also merge the autodiscover and owa/activesync to one WAF Profile.

    For me it works fine.

    Cheers Andreas

     

    UTM SCE/SCA | Endpoint SCE

Reply Children
Unfiltered HTML