1

Does it work to use Outlook Anywhere on the local LAN without changing any settings?

I don't have a problem making Outlook Anywhere work when the computer is off the LAN. However, when the computer is on the LAN I can't get it to accept the settings.

Is it possible that I need to reconfigure something in our SonicWall firewall/router? The domains used, autodiscover.ourdomainname.com and remote.ourdomainname.com point to one of our WAN addresses. I'm guessing this is where the problem is?!

Update: The solution I've found so far was to create a DNS zone on our server for ourdomainname.com and then I created A records for "autodiscover" and "remote" that point to our server. I also had to create A records for ourdomainname.com and www.ourdomainname.com to ensure that we can still access our website from within our network. Does someone have a better solution or know of any other problems my "solution" might cause?

HK1
  • 268
  • 3
  • 14

1 Answers1

3

A better solution:

Create DNS zones for autodiscover.ourdoamainname.com and remote.ourdomainname.com. Create an A record in each zone with no hostname and point it to your Exchange server.

Another option is to look into what it takes to enable NAT hairpinning. On Sonicwall firewalls, I believe you need to use the 1-to-1 NAT feature in order to enable this. So you would need an extra external IP address that you can give to your Exchange server.

Jason Berg
  • 19,084
  • 6
  • 40
  • 55
  • Our Exchange Server is an SBS 2008 box that hosts everything for the company. Would creating a 1-to-1 NAT cause some security issues? Also, we have four slow DSL lines, each with one external Class A IP address. I'm actually working on a solution where I'll be able to use two or three of our DSL connections to send and receive email instead of just one of them, as is the case now. We send a lot of emails with large attachments. – HK1 Feb 11 '11 at 00:33
  • SBS2008 creates an internal DNS zone during configuration named "remote.domain.com" (if you accept the default settings) expilictly for internal Outlook clients and an A record is created for that zone that points to the internal ip address of the server. This is explicitly set up to allow internal Outlook clients to automatically discover the Exchange server internally. I've never had to set up or configure any additional DNS records to get Outlook configured automatically using Outlook Anywhere – joeqwerty Feb 11 '11 at 02:35
  • @HK1 - A lot of people seem to think public IP address means insecure. This simply isn't true. Just because you have a dedicated public IP address on that server, doesn't mean it can't be secure. Just configure your firewall to only allow traffic you permit. As for the 4 DSL lines, I'm lost on that. Getting a bonded T1 would be my answer...of course, I don't really do cheap solutions. I do solutions that work. – Jason Berg Feb 11 '11 at 02:57
  • @joeqwerty - I think you're mostly correct. A standard SBS2008 setup creates the records you need. I don't think a migrated setup does though, so there are situations where these records aren't in tact. – Jason Berg Feb 11 '11 at 02:59
  • I'm not sure that it doesn't. I've just completed two SBS2003 to SBS2008 migrations and that was the case in both migrations. – joeqwerty Feb 11 '11 at 03:28
  • @joeqwerty - It's always possible that I'm wrong (*gasp*) I'm pretty sure I've seen migrations where this wasn't the case...maybe they were migrations done wrong. – Jason Berg Feb 11 '11 at 03:42
  • I'm a little baffled by the exchange here about SBS's default settings. I'm configuring laptops with Outlook Anywhere so that they will work both inside and outside the network. The exchange here is assuming that the client will work only on the LAN?! – HK1 Feb 11 '11 at 15:33
  • @JasonBerg The office I'm working at is located in a fairly remote area in Colorado. We have very limited options when it comes to Internet. Your comment about the bonded T1 assumes that T1's are easy to come by. We did get a quote on Direct Internet Access and it was pretty awful high. The local phone company would have to splice into the fiber optics line specifically to service our company. This not be cheap. – HK1 Feb 11 '11 at 15:47