Full Outlook 2000 Client via a firewall

G

Guest

We have a VPN dial-in system used for remote workers in Africa to dial in and
download email. This uses dual skinned firewalls and a VPN Concentrator to
secure the access. At the moment, the outer skin only allows in IPSEC/IKE
through and hence is fairly secure, but the inner skin still has a pass all
rule that I need to remove.
The problem is that the full Outlook Client is MAPI compliant and uses MS
RPC (sic) to talk to Exchange. As most firewalls can't track the RPC calls,
you either have to open a huge range of TCP ports (which our Risk people
won't allow) or you have to use fixed RPC ports. (or use the Outlook Web
client which is NOT an option).
I can find how to force Exchange to use fixed RPC ports, this is a fairly
simple Registry hack, but I can't find the same information for the Outlook
client machines.
Can anyone help me out?
 
M

Milly Staples [MVP - Outlook]

You would probably get a better and faster answer if you posted in an
Exchange group such as microsoft.public.exchange.clients.

--
Milly Staples [MVP - Outlook]

Post all replies to the group to keep the discussion intact. All
unsolicited mail sent to my personal account will be deleted without
reading.

After furious head scratching, Steve Kerr asked:

| We have a VPN dial-in system used for remote workers in Africa to
| dial in and download email. This uses dual skinned firewalls and a
| VPN Concentrator to secure the access. At the moment, the outer skin
| only allows in IPSEC/IKE through and hence is fairly secure, but the
| inner skin still has a pass all rule that I need to remove.
| The problem is that the full Outlook Client is MAPI compliant and
| uses MS RPC (sic) to talk to Exchange. As most firewalls can't track
| the RPC calls, you either have to open a huge range of TCP ports
| (which our Risk people won't allow) or you have to use fixed RPC
| ports. (or use the Outlook Web client which is NOT an option).
| I can find how to force Exchange to use fixed RPC ports, this is a
| fairly simple Registry hack, but I can't find the same information
| for the Outlook client machines.
| Can anyone help me out?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Problem in remote access of outlook due to random port 1
Outlook 2007 RPC-HTTP Cannot Connect 1
Issues with Windows 7 - Outlook Client - Exchange 2003 2
Outlook 2007 via RPC 1
Creating an Outlook Profile for RPC over HTTP client 1
ICF, Outlook, Exchange 2
can you run outlook from a usb memory stick? 4
Push to a laptop 3

Top