[northeast] FIOS and Inbound Port 80

Author	All Replies
devicemanage Premium join:2002-03-16 Chalfont, PA 1 edit	[northeast] FIOS and Inbound Port 80 I need to find a way around the inbound port 80 block for residential service. What tools are you guys using - I need to be able to run active sync over the internet for my cell phone. -- »www.devicemanager.net
	to forum · permalink · 2008-09-04 09:32:47 ·
pflog Bueller? Bueller? Premium,MVM join:2001-09-01 El Dorado Hills, CA kudos:3	You can use a dynamic dns from someone like http://dyndns.org, and just run your server on port 81 instead of 80, then point your browser (or your active sync client/etc) to: http://yourhost.dyndns.org:81 Thanks, Josh -- He who is not contented with what he has, would not be contented with what he would like to have. -Socrates
	to forum · permalink · 2008-09-04 10:08:48 ·
Hooper Premium join:2001-10-22 Villanova, PA	reply to devicemanage The easiest solution is to use 443 and get a cert (assuming you are talking about Exchange Activesync). Running Active Sync for Exchange on a non-standard port will leave you reeling in frustration.
	to forum · permalink · 2008-09-04 10:25:42 ·
devicemanage Premium join:2002-03-16 Chalfont, PA	said by Hooper: The easiest solution is to use 443 and get a cert (assuming you are talking about Exchange Activesync). Running Active Sync for Exchange on a non-standard port will leave you reeling in frustration. I am using it for exchange. Not too sure how I would change the owa to 443? Could you explain that for me? I would assume there is a record in iis that I need to change, but do you know the details? Currently I am using 443 for my firewall I would assume like with any webserver you could run multiple sites off 1 port?
	to forum · permalink · 2008-09-04 10:45:11 ·
Hooper Premium join:2001-10-22 Villanova, PA	»technet.microsoft.com/en-us/libr···80).aspx If you only have one public IP, you can only have one server on 443. I would mover the firewall to another port.
	to forum · permalink · 2008-09-04 11:08:17 ·
sashwa Pixie Cat Crunchin' n Foldin' Premium,Mod join:2001-01-29 Alcatraz kudos:14	reply to devicemanage Moved in from Verizon Fiber Optic.
	to forum · permalink · 2008-09-04 11:11:11 ·
Doctor Olds I Need A Remedy For What's Ailing Me. Premium,VIP join:2001-04-19 1970 442 W30 kudos:18	reply to devicemanage said by devicemanage: I need to find a way around the inbound port 80 block for residential service. The only way around a blocked port is to open it. That means you have to purchase a Business Account. You can't get the port opened on a Residential FIOS Account. If you need port 80, it is only open on their Business Plans. »Verizon Online FiOS FAQ »What about Port 80 - is it blocked? -- What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?
	to forum · permalink · 2008-09-04 11:27:46 ·
devicemanage Premium join:2002-03-16 Chalfont, PA	reply to devicemanage Well I can now access the owa via mail.domainname.com:443 - this might suffice for now but I cant get my cell to accept anything except the domain name - it just reverts back. Thanks for the info so far. I was aware about the fios port blocking but there are lots of things you can do to live with it - if you know how. -- »www.devicemanager.net
	to forum · permalink · 2008-09-04 11:38:26 ·
Hooper Premium join:2001-10-22 Villanova, PA 1 edit	said by devicemanage: Well I can now access the owa via mail.domainname.com:443 - this might suffice for now but I cant get my cell to accept anything except the domain name - it just reverts back. Thanks for the info so far. I was aware about the fios port blocking but there are lots of things you can do to live with it - if you know how. The "Requires Secure Connection" checkbox on your mobile specifies the client to use port 443/SSL. This is also one of the reasons non-standard ports really don't work well with ActiveSync. Take for example Nokia's Mail For Exchange client. It allows you to enter a non-standard port, but exchange on the back end gets screwed up connecting.
	to forum · permalink · 2008-09-04 15:17:01 ·
sashwa Pixie Cat Crunchin' n Foldin' Premium,Mod join:2001-01-29 Alcatraz kudos:14	reply to devicemanage Moved back from Microsoft as it doesn't seem to be a Microsoft problem.
	to forum · permalink · 2008-09-04 15:18:45 ·
devicemanage Premium join:2002-03-16 Chalfont, PA	reply to Hooper said by Hooper: said by devicemanage: Well I can now access the owa via mail.domainname.com:443 - this might suffice for now but I cant get my cell to accept anything except the domain name - it just reverts back. Thanks for the info so far. I was aware about the fios port blocking but there are lots of things you can do to live with it - if you know how. The "Requires Secure Connection" checkbox on your mobile specifies the client to use port 443/SSL. This is also one of the reasons non-standard ports really don't work well with ActiveSync. Take for example Nokia's Mail For Exchange client. It allows you to enter a non-standard port, but exchange on the back end gets screwed up connecting. Yeah, I hear ya, I am probably going to go the ssl route. I did find a msft link about creating a virtual server in exchange and then re-direct kb817379 »support.microsoft.com/kb/817379/en-us what do you think of method 2
	to forum · permalink · 2008-09-04 15:35:24 ·

Hooper Premium join:2001-10-22 Villanova, PA	I was never able to get activesync to work over anything but port 80 and 443. I tried for a bit and then ran out of time. I couldn't find any other real success stories on the net either... one of the reasons I gave up.
	to forum · permalink · 2008-09-04 17:42:28 ·
More Fiber Premium,MVM join:2005-09-26 West Chester, PA kudos:18	reply to devicemanage said by devicemanage: I need to find a way around the inbound port 80 block for residential service. As was suggested by pflog , you can use dyndns.org to redirect your active sync. However, rather than appending :81 to the URL, dyndns.org offers a service called WebHop: »www.dyndns.com/support/kb/webhop···ml#ports which accepts incoming requests on port 80 to a public domain name and redirects them to a non-standard port on your dynamic IP address (e.g. 8080). You need three things to make this work: •dyndns.org's WebHop service •Enable the dyndns.org dynamic IP address updater in the Actiontec. •Create a Port Forward in the Actiontec for inbound port 8080 to your server's port 80.
	to forum · permalink · 2008-09-04 22:23:50 ·
devicemanage Premium join:2002-03-16 Chalfont, PA	reply to devicemanage Thanks everyone!!!!
	to forum · permalink · 2008-09-04 22:46:21 ·
Ronin_R6 join:2007-03-30 Chantilly, VA	reply to devicemanage Just go to startssl.com and get yourself a free Certificate. Then use secure connections. It will use port 443 which isn't blocked, and it will keep your data more secure in the process. The issue I had when setting up exchange on my residential fios connection was that VZ blocks incoming port 25. I had to sign up for a mail redirection service that will accept mail on port 25, then forward them on a nonstandard port to my exchange box. I lso use their dynamic dns service as well, which is free as long as they are the registrar of my domain name.
	to forum · permalink · 2008-09-05 09:45:25 ·
devicemanage Premium join:2002-03-16 Chalfont, PA	I am doing the same thing, works like a charm but costs me like 50 a year to keep it running. I fine with it but would be nice to be free too. Quick question, how long are you holding on to your ip?
	to forum · permalink · 2008-09-05 12:31:53 ·
Hooper Premium join:2001-10-22 Villanova, PA	Port 25 is open here on my resdintial account. In exchange I use authenticated SMTP outbound to outgoing.verizon.net. No reason to pay for a service in either direction. My IP has lasted up to 6 months, but recently a lot less due to power issues (planned) that have taken things offline for several hours.
	to forum · permalink · 2008-09-05 13:09:42 ·
Hooper Premium join:2001-10-22 Villanova, PA	reply to Ronin_R6 said by Ronin_R6: Just go to startssl.com and get yourself a free Certificate. Then use secure connections. It will use port 443 which isn't blocked, and it will keep your data more secure in the process. You can generate your own SSL as well via numerous 3rd party tools and through Windows Certificate Authority. The problem is that they are not trusted by a root CA and will likely cause issues on your device with security prompts. This will break synchronization, unless you hack the device's root store to accept the cert.
	to forum · permalink · 2008-09-05 13:12:10 ·
Ronin_R6 join:2007-03-30 Chantilly, VA	said by Hooper: said by Ronin_R6: Just go to startssl.com and get yourself a free Certificate. Then use secure connections. It will use port 443 which isn't blocked, and it will keep your data more secure in the process. You can generate your own SSL as well via numerous 3rd party tools and through Windows Certificate Authority. The problem is that they are not trusted by a root CA and will likely cause issues on your device with security prompts. This will break synchronization, unless you hack the device's root store to accept the cert. Microsoft doesn't trust the startssl certs either, so they have to be installed on the devices. Not really a hack, in fact most of the enterprises I have worked for use their own PKI infrastructure. Installing certs on windows mobile is a one click operation. I too am relaying my outgoing mail through Verizon's mail server, but not because the ports were blocked, but rather because gmail would not accept emails from my dynamic ip address. I will have to check port 25 incoming here, but I am certain that a couple years ago when I switched to FiOS the port 25 blocking caused a disruption in my mail.
	to forum · permalink · 2008-09-05 14:29:18 ·

US Telco Support > Verizon > Verizon Fiber Optics > [northeast] FIOS and Inbound Port 80