External access to OWA What ports are needed.

  • Thread starter Rollinwest
  • Start date Views 2,733
Status
Not open for further replies.
R

Rollinwest

Hello all,

i am in the process of configuring RPC over HTTP and External OWA.

With that said I am pulling my hair out because I see so many

different posts as it relates to exactly what ports that need to be

open.

I have read I just need 80/443 however I have read other information

where it says I need the following ports. Can someone please advise?

Here is a list of ports in question.

Link State Protocol within a Routing Group TCP port 691

Link State Protocol between Routing Groups 25

SMTP traffic 25

RVP for Instant Messenger 80

LDAP Domain Controller lookups 389

LDAP Global Catalog lookups 3268

NetBIOS TCP 135, 139, 1024+

DNS lookups TCP and UDP 53

Remote Procedure Calls 111, 135, 1024+

Netlogon UDP port 445

Kerberos TCP and UDP port 88

Outlook Web Access (OWA) TCP port 80 for HTTP, TCP port 443 for

HTTPS

IMAP4 TCP port 143, TCP port 993 if using with SSL

POP3 TCP port 110, TCP port 995 if using with SSL

Thanks in advance!

~RollinWest
 
J

John Oliver, Jr. [MVP]

HTTPS port 443 is all you need open on your firewall for secure OWA and

Outlook Anywhere access remotely. Internally you will have to setup

Exchange to allow this but it seems you have already done that but you never

stated what version of Exchange Server. From your post it seems you are

running Exchange 2003?

John Oliver, Jr

MCSE, MCT, CCNA

Exchange MVP 2009

Microsoft Certified Partner

"Rollinwest" <rollinwest@gmail.com> wrote in message

news:99d61fd5-fa8f-4063-a718-6a26f790bd1f@q15g2000yqj.googlegroups.com...
> Hello all,

> i am in the process of configuring RPC over HTTP and External OWA.
> With that said I am pulling my hair out because I see so many
> different posts as it relates to exactly what ports that need to be
> open.

> I have read I just need 80/443 however I have read other information
> where it says I need the following ports. Can someone please advise?

> Here is a list of ports in question.

> Link State Protocol within a Routing Group TCP port 691
> Link State Protocol between Routing Groups 25
> SMTP traffic 25
> RVP for Instant Messenger 80
> LDAP Domain Controller lookups 389
> LDAP Global Catalog lookups 3268
> NetBIOS TCP 135, 139, 1024+
> DNS lookups TCP and UDP 53
> Remote Procedure Calls 111, 135, 1024+
> Netlogon UDP port 445
> Kerberos TCP and UDP port 88
> Outlook Web Access (OWA) TCP port 80 for HTTP, TCP port 443 for
> HTTPS
> IMAP4 TCP port 143, TCP port 993 if using with SSL
> POP3 TCP port 110, TCP port 995 if using with SSL

> Thanks in advance!

> ~RollinWest
 
R

Rich Matheisen [MVP]

On Tue, 16 Mar 2010 10:52:28 -0700 (PDT), Rollinwest

<rollinwest@gmail.com> wrote:


> Hello all,

> i am in the process of configuring RPC over HTTP and External OWA.
> With that said I am pulling my hair out because I see so many
> different posts as it relates to exactly what ports that need to be
> open.

> I have read I just need 80/443 however I have read other information
> where it says I need the following ports. Can someone please advise?


Port 443 is all that's needed for RPC-Over-HTTPS and OWA.


> Here is a list of ports in question.

> Link State Protocol within a Routing Group TCP port 691
> Link State Protocol between Routing Groups 25
> SMTP traffic 25
> RVP for Instant Messenger 80
> LDAP Domain Controller lookups 389
> LDAP Global Catalog lookups 3268
> NetBIOS TCP 135, 139, 1024+
> DNS lookups TCP and UDP 53
> Remote Procedure Calls 111, 135, 1024+
> Netlogon UDP port 445
> Kerberos TCP and UDP port 88
> Outlook Web Access (OWA) TCP port 80 for HTTP, TCP port 443 for
> HTTPS
> IMAP4 TCP port 143, TCP port 993 if using with SSL
> POP3 TCP port 110, TCP port 995 if using with SSL


Your FE servers are on your secure LAN, not your DMZ LAN. All those

ports should be usable.

Putting your FE servers inyour DMZ LAN isn't a good idea.

-
Rich Matheisen

 
Status
Not open for further replies.
Top