Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Not applicable

Fortigate 50B and RPC over HTTP

Hi, I am using the Fortigate 50B before my Small Business Server 2003. Now I want to use Outlook for my agent outside of the company. The Exchange server is configered correctly, but the agents are not able to login outside the company to Exchange over Internet. What I did in the Fortigate 50B: 1. I added The 593 Port as Virtual IP and mapped it to the Exchange server 2. I added a policy that uses this virtual IP to forward packages from wan1-->internal1. These two steps worked fine to forward the HTTP, HTTPS and Remote control port to the server, but the RPC over HTTP is not working. Has anyone an Idea? Maybe there is a problem that the Firewall is checking the certificate and /or blocks it.
20 REPLIES 20
FortiRack_Eric
New Contributor III

The wildcard works.... as long as you have only one wan connection. As for using rpc over http. Don' t use it. We all know that http isn' t secure. Furthermore as you are using a SBS2003 you can use RPC over HTTPS. Use the internet connection wizard and change the certificate to outlook.mydomain.com where you have defined a DNS entry for your domain that refers to the real ip ofcourse. Then simple configure a VIP for 443 to the sbs server. Works like a charm. Needless to say that you should restrict the wan1 ips as much as possible and/or have 2 factor authentication Cheers, Eric

Rackmount your Fortinet --> http://www.rackmount.it/fortirack

 

Rackmount your Fortinet --> http://www.rackmount.it/fortirack
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors