devicemanage
Premium
join:2002-03-16
Chalfont, PA
 ·Comcast
 ·Vonage
 ·Verizon FIOS
1 edit | [northeast] FIOS and Inbound Port 80
I need to find a way around the inbound port 80 block for residential service. What tools are you guys using - I need to be able to run active sync over the internet for my cell phone.
--
»www.devicemanager.net |
|
deblin
Dark Side of the Moon
Premium,MVM
join:2001-09-01
Middletown, DE
·Verizon FIOS
| You can use a dynamic dns from someone like http://dyndns.org, and just run your server on port 81 instead of 80, then point your browser (or your active sync client/etc) to:
http://yourhost.dyndns.org:81
Thanks,
Josh
--
He who is not contented with what he has, would not be contented with what he would like to have. -Socrates |
|
Hooper
Premium
join:2001-10-22
Villanova, PA | reply to devicemanage
The easiest solution is to use 443 and get a cert (assuming you are talking about Exchange Activesync). Running Active Sync for Exchange on a non-standard port will leave you reeling in frustration. |
|
devicemanage
Premium
join:2002-03-16
Chalfont, PA
·Comcast
·Vonage
·Verizon FIOS
| said by Hooper  :The easiest solution is to use 443 and get a cert (assuming you are talking about Exchange Activesync). Running Active Sync for Exchange on a non-standard port will leave you reeling in frustration. I am using it for exchange. Not too sure how I would change the owa to 443? Could you explain that for me? I would assume there is a record in iis that I need to change, but do you know the details? Currently I am using 443 for my firewall I would assume like with any webserver you could run multiple sites off 1 port? |
|
Hooper
Premium
join:2001-10-22
Villanova, PA
| »technet.microsoft.com/en-us/libr···80).aspx
If you only have one public IP, you can only have one server on 443. I would mover the firewall to another port. |
|
sashwa
Pixie Cat Crunchin' n Foldin'
Premium,Mod
join:2001-01-29
Alcatraz
clubs:  | reply to devicemanage
Moved in from Verizon Fiber Optic. |
|
Doctor Olds
I Need A Remedy For What's Ailing Me.
Premium,VIP
join:2001-04-19
1970 442 W30
clubs:
| reply to devicemanage
said by devicemanage :I need to find a way around the inbound port 80 block for residential service. The only way around a blocked port is to open it. That means you have to purchase a Business Account. You can't get the port opened on a Residential FIOS Account. If you need port 80, it is only open on their Business Plans.
»Verizon Online FiOS FAQ »What about Port 80 - is it blocked?
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time? |
|
devicemanage
Premium
join:2002-03-16
Chalfont, PA
·Comcast
·Vonage
·Verizon FIOS
| reply to devicemanage
Well I can now access the owa via mail.domainname.com:443 - this might suffice for now but I cant get my cell to accept anything except the domain name - it just reverts back.
Thanks for the info so far. I was aware about the fios port blocking but there are lots of things you can do to live with it - if you know how.
--
»www.devicemanager.net |
|
Hooper
Premium
join:2001-10-22
Villanova, PA
1 edit | said by devicemanage :Well I can now access the owa via mail.domainname.com:443 - this might suffice for now but I cant get my cell to accept anything except the domain name - it just reverts back. Thanks for the info so far. I was aware about the fios port blocking but there are lots of things you can do to live with it - if you know how. The "Requires Secure Connection" checkbox on your mobile specifies the client to use port 443/SSL. This is also one of the reasons non-standard ports really don't work well with ActiveSync. Take for example Nokia's Mail For Exchange client. It allows you to enter a non-standard port, but exchange on the back end gets screwed up connecting. |
|
sashwa
Pixie Cat Crunchin' n Foldin'
Premium,Mod
join:2001-01-29
Alcatraz
clubs: | reply to devicemanage
Moved back from Microsoft as it doesn't seem to be a Microsoft problem. |
|
devicemanage
Premium
join:2002-03-16
Chalfont, PA
·Comcast
·Vonage
·Verizon FIOS
| reply to Hooper
said by Hooper :said by devicemanage :Well I can now access the owa via mail.domainname.com:443 - this might suffice for now but I cant get my cell to accept anything except the domain name - it just reverts back. Thanks for the info so far. I was aware about the fios port blocking but there are lots of things you can do to live with it - if you know how. The "Requires Secure Connection" checkbox on your mobile specifies the client to use port 443/SSL. This is also one of the reasons non-standard ports really don't work well with ActiveSync. Take for example Nokia's Mail For Exchange client. It allows you to enter a non-standard port, but exchange on the back end gets screwed up connecting. Yeah, I hear ya, I am probably going to go the ssl route. I did find a msft link about creating a virtual server in exchange and then re-direct kb817379
»support.microsoft.com/kb/817379/en-us
what do you think of method 2 |
|
Hooper
Premium
join:2001-10-22
Villanova, PA | I was never able to get activesync to work over anything but port 80 and 443. I tried for a bit and then ran out of time. I couldn't find any other real success stories on the net either... one of the reasons I gave up. |
|
More Fiber
Premium,MVM
join:2005-09-26
West Chester, PA
 ·Bay Area Internet ..
| reply to devicemanage
said by devicemanage :I need to find a way around the inbound port 80 block for residential service. As was suggested by deblin , you can use dyndns.org to redirect your active sync.
However, rather than appending :81 to the URL, dyndns.org offers a service called WebHop:
»www.dyndns.com/support/kb/webhop···ml#ports
which accepts incoming requests on port 80 to a public domain name and redirects them to a non-standard port on your dynamic IP address (e.g. 8080).
You need three things to make this work:
•dyndns.org's WebHop service
•Enable the dyndns.org dynamic IP address updater in the Actiontec.
•Create a Port Forward in the Actiontec for inbound port 8080 to your server's port 80. |
|
devicemanage
Premium
join:2002-03-16
Chalfont, PA | reply to devicemanage
Thanks everyone!!!! |
|
Ronin_R6
join:2007-03-30
Chantilly, VA
| reply to devicemanage
Just go to startssl.com and get yourself a free Certificate. Then use secure connections. It will use port 443 which isn't blocked, and it will keep your data more secure in the process.
The issue I had when setting up exchange on my residential fios connection was that VZ blocks incoming port 25. I had to sign up for a mail redirection service that will accept mail on port 25, then forward them on a nonstandard port to my exchange box. I lso use their dynamic dns service as well, which is free as long as they are the registrar of my domain name. |
|
devicemanage
Premium
join:2002-03-16
Chalfont, PA | I am doing the same thing, works like a charm but costs me like 50 a year to keep it running. I fine with it but would be nice to be free too. Quick question, how long are you holding on to your ip? |
|
Hooper
Premium
join:2001-10-22
Villanova, PA
| Port 25 is open here on my resdintial account. In exchange I use authenticated SMTP outbound to outgoing.verizon.net. No reason to pay for a service in either direction.
My IP has lasted up to 6 months, but recently a lot less due to power issues (planned) that have taken things offline for several hours. |
|
Hooper
Premium
join:2001-10-22
Villanova, PA
| reply to Ronin_R6
said by Ronin_R6 :Just go to startssl.com and get yourself a free Certificate. Then use secure connections. It will use port 443 which isn't blocked, and it will keep your data more secure in the process. You can generate your own SSL as well via numerous 3rd party tools and through Windows Certificate Authority. The problem is that they are not trusted by a root CA and will likely cause issues on your device with security prompts. This will break synchronization, unless you hack the device's root store to accept the cert. |
|
Ronin_R6
join:2007-03-30
Chantilly, VA
| said by Hooper :said by Ronin_R6 :Just go to startssl.com and get yourself a free Certificate. Then use secure connections. It will use port 443 which isn't blocked, and it will keep your data more secure in the process. You can generate your own SSL as well via numerous 3rd party tools and through Windows Certificate Authority. The problem is that they are not trusted by a root CA and will likely cause issues on your device with security prompts. This will break synchronization, unless you hack the device's root store to accept the cert. Microsoft doesn't trust the startssl certs either, so they have to be installed on the devices. Not really a hack, in fact most of the enterprises I have worked for use their own PKI infrastructure. Installing certs on windows mobile is a one click operation.
I too am relaying my outgoing mail through Verizon's mail server, but not because the ports were blocked, but rather because gmail would not accept emails from my dynamic ip address.
I will have to check port 25 incoming here, but I am certain that a couple years ago when I switched to FiOS the port 25 blocking caused a disruption in my mail. |
|
