Exchange with DynDNS and .com domain (Full Version)

All Forums >> [Microsoft Exchange 2007] >> Installation



Message


NunoUFO -> Exchange with DynDNS and .com domain (17.Feb.2008 3:46:33 PM)

Hi everyone, I have been googling and searching for info on how to do want I need but I have found many diferent cases and none like mine, therefore I come for your help.
 
I have the following configs:
 
One Edimax router with DynDNS ability
One .com domain at Enom
One Windows 2003 Box with Exchange 2007 SP1
One .local domain configured
Forward and reverse lookup zone for the .com domain configured
 
 
What I dont have:
 
No clue how to setup my domain at DynDNS
How can I setup Exchange to use this domain
 
Thank you in advance,
 
Best Regards
Nuno




Sembee -> RE: Exchange with DynDNS and .com domain (18.Feb.2008 7:25:49 AM)

Do you have a static IP address?
The reverse lookup zone - is that on the Windows DNS server or on the internet? If it is on the Windows server then it is useless for Internet use.

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (19.Feb.2008 6:30:35 PM)

Hi Sembee,

Thank you for your answer.
No I dont have static IP, and I have a local domain configured in my DNS.
I was planning on creating an ALIAS CNAME entry to point to DYNDNS.

Do you think that this will work?

Thanks in advance
Nuno




Sembee -> RE: Exchange with DynDNS and .com domain (19.Feb.2008 8:13:54 PM)

Ignore the local DNS. That will not do anything for you with regards to email delivery.
Do you own your own domain? If not then I would suggest that you get hold of one so that you can configure Exchange correctly. Dynamic DNS addresses are not really a good idea for anything other than DNS. I wouldn't use one for email. It will also make things easier when you purchase an SSL certificate.

I have a guide to using Exchange with a dynamic DNS address here: http://www.amset.info/exchange/dynamicip.asp

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (20.Feb.2008 11:45:55 AM)

Hi Simon,

Yes I do have a domain wich is bazartuga.com
I have allready configured the AD for the above domain. Do I have to use a local domain?
Also I have already setup an account at Dyndns, wich is bazartuga.dyndns.org and os pointing to my router.

Can you help further?
Thank you
Nuno





Sembee -> RE: Exchange with DynDNS and .com domain (20.Feb.2008 5:26:33 PM)

Did you read the article that I have posted above? That explains what you need to do DNS wise. Has nothing to do with your internal DNS system, it is the internet DNS that you need to change.

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (21.Feb.2008 11:11:44 AM)

Hello Simon,

Yes I have read :)
All I need to do is point my MX record to the Dyndns.
Regardless of my local domain.
Is this it?




Sembee -> RE: Exchange with DynDNS and .com domain (21.Feb.2008 2:06:28 PM)

That is all that you have to do. The MX record does not have to be in the same domain. You do nothing with your local DNS as the internet doesn't use that.

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (22.Feb.2008 5:26:18 AM)

Thank you Simon.

Another doubt I am having:
Should I create a new forward zone for the external domain, or can I create the MX entry on my local forward zone?

Nuno




Sembee -> RE: Exchange with DynDNS and .com domain (22.Feb.2008 8:35:57 AM)

What you do with local zones it up to you. With dynamic DNS services I don't tend to bother with local zones for the dynamic DNS address because I am hiding the dynamic DNS host behind my own domain.

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (22.Feb.2008 4:18:45 PM)

Hello again Simon,

Thank you so much for your attention and help.
I have finaly configured DNS entries and Exchange in order to send and recieve email thourgh the dyndns domain (I will configure my .com domain later).

I have only one more question:

For testing purposes I am using a self generated certificate in order to encrypt comunications.

However this certificate appears OK in the exchange server and works just fine in IE, but when I copy it and install it on a Windows Mobile Device, Exchange Activesync doesnt sync and gives me the following error code: 0x80072F17.

Thank you again so much
Nuno




Sembee -> RE: Exchange with DynDNS and .com domain (22.Feb.2008 6:32:15 PM)

I don't have much luck with self generated certificates and don't tend to use them if I can avoid it. The error I think is a trust error. If you browse on the device to http:// server / oma do you get a certificate prompt? If you do then the certificate is not trusted.

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (23.Feb.2008 12:05:56 PM)

Hi Simon,

Its the weirdest thing:

I have found out that in order to use self gen certs on a Windows Mobile device you must install 2 certs: the cert to trust the CA and the intermediate cert to access the server services.

I can now navigate through the publish sites and folders without the cert warning.
However when I try to sync my device I am now getting a new error and error code:

It says that the user does not have permission to sync: 0x85010004

Can you please help me?

Thank you
Nuno




Sembee -> RE: Exchange with DynDNS and .com domain (23.Feb.2008 12:19:07 PM)

If you have used a certificate generated by selfssl then you only need to install one certificate. However as I wrote above I don't use self generated certificates. I don't see the point when you can get SSL certificates for US$20 from GoDaddy (http://www.certificatesforexchange.com/)

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (23.Feb.2008 1:04:32 PM)

Hi Simon,

Again thank you for your answer.
Reason why I dont want to purchase a 3rd party cert is because I am just fooling arround and learning so I can afterwards configure for real the server for the .com domain and then get the certificate.

Thanks
Nuno




NunoUFO -> RE: Exchange with DynDNS and .com domain (24.Feb.2008 10:40:05 AM)

Dear Simon,

I am in trouble:

I have deselect the SSL requerid option from IIS in order to Sync with the device without encryption, like it was hapening before I tried the self generated certificate.

But when I try to sync it keeps giving me the no permission error: 0x85010004, and I havent messed with the authetication methods nor the virtual dirs permissions, only applied the SSL.

Can you help me?

Thank you

Nuno




Sembee -> RE: Exchange with DynDNS and .com domain (24.Feb.2008 7:18:49 PM)

The require SSL option on the virtual directory does not turn SSL support on and off. All it does is set whether you must use SSL or not. Therefore if the client has still been configured to use SSL then it will continue to try and use it.

Simon.




NunoUFO -> RE: Exchange with DynDNS and .com domain (29.Feb.2008 7:13:16 AM)

Hello Simon and everyone,

An update on this situation:

I have reached the conclusion that it is no an SSL issue, because it was in fact working well on OWA and any PC with the certificate.
What was wrong was the EAS (Exchange Activesync) policy that I created on EMC (Exchange Management Console).

Seems that if I activate any new feature of SP1 that requires a CAL it automaticaly says the user has no permissions.

So one question, when I buy a CAL how do I install/implement it?

Thanks in advance
Nuno




Sembee -> RE: Exchange with DynDNS and .com domain (29.Feb.2008 4:16:50 PM)

I would review your policy and remove anything that needs a CAL. There are currently no Windows Mobile devices on the market that support features that require a CAL. The matrix on this page shows things quite clearly.

http://blogs.technet.com/vik/archive/2008/01/30/microsoft-exchange-2003-2007-2007-sp1-mobility-features-matrix.aspx

Simon.




Page: [1]