Exchange 2010 Hybrig configuration removal
Our Exchange environment currently consists of an Exchange 2003 and Exchange 2010 SP3 hybrid server. We were looking at moving all mailboxes from our Exchange 2003 server to Office 365 via the Exchange 2010 Hybrid server. Due to business decisions,
we have stopped our Office 365 deployment and are moving all mailboxes back on premise. With this in mind, I am looking for some guidance on how best to approach this.
Once all mailboxes are moved back on premise, would it be better to re-license our Exchange 2010 server and remove the Hybrid configuration then move all remaining 2003 mailboxes to the 2010 server or, build a new 2010 SP3 server and decommission
the Hybrid server.
Any advice would be greatly appreciated as I haven't found anyone who has gone this route before.
Russ
If the current server has the horsepower required to host your mailboxes and the other roles, I'd use it. No reason to add complexity if it's not required. If this server is underpowered, though, I'd remove Exchange from it before I added the
new Exchange 2010 server. This will allow you to have a smoother experience in your migration process. If you have configured your organization for hybrid operations (including legacyExchange names on certificates, etc), you should be able to just
point these to your Exchange 2010 servers (instead of to the cloud) to support your migration. Make sure these changes are done before you start adding active mailboxes to the Exchange 2010 server, whichever one it is you start using.
Similar Messages
-
Hello All:
I am receiving an error when I run the Manage Hybrid Configuration wizard - ERROR:Updating hybrid configuration failed with error 'Subtask NeedsConfiguration execution failed: Configure Recipient Settings. I have opened a SR, but figured I'd try the forums,
too. I have a wildcard certificate from GoDaddy (MS says they support wildcards from GoDaddy) & that cert has only the IIS service applied to it on the CAS. I've read in the Exchange Server Deployment Assistant that it should have the SMTP & IIS services
assigned to it, but my question is - SMTP on the CAS (separate server) or on the Mailbox/Hub Transport (separate server)? And what are the ramifications of assigning the SMTP service to, let's say, the CAS? We have had multiple issues every time the servers
get updated/changed; I do not want to disrupt services further, as the Manage Hybrid Configuration will be done during business hours.
If anyone can provide any assistance/clarification, it would be most appreciated.
Thank you.Hi,
We can enable a Wildcard certificate with SMTP service for Exchange Hybird Deployment. The SMTP service can be assigned to multiple certificates. For some Exchange services such as OWA, Ecp, ActiveSync, Autodiscover service, OOF, it is used with Exchange
certificate with IIS service. And there is usually only one certificate can be assigned with IIS service.
Please just make sure your Wildcard certificate can contain all namespaces which are used for all internal URL and External URL configuration in Exchange services. About how to import an existing wildcard certificate on the Exchange 2010 Hybird servers,
please refer to the Import & Enable Third Party Certificate on Hybrid Servers
part in the following article:
http://www.msexchange.org/articles-tutorials/office-365/exchange-online/configuring-exchange-hybrid-deployment-migrating-to-office-365-exchange-online-part9.html
Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please
make sure that you completely understand the risk before retrieving any suggestions from the above link.
Regards,
Winnie Liang
TechNet Community Support -
Exchange 2010 subdomain configuration
Let me explain my situation as this is strange and I am baffled and new to this organization. I work for a University and we have tons of email servers on campus. Everyone has a @university.edu email and account, but all the departments
/ colleges under the main university do their own thing.
So that means I work for @dpt.university.edu and we have our own Exchange 2010 server. Oh, and @university.edu is a Linux free something or another.
We have been delegated the sub domain and manage our own dns they are secondary. We have only 1 smtp on people's accounts (dpt.university.edu) but when people here send mail it is @university.edu. When people respond it goes to @university.edu.
I have been having people configure a forward rule from university to dpt.university.edu and that works.
So what am I missing? Where else should I be looking? I have not had to manage exchange since 2003.
Thanks
timSo that is a bit confusing. I am sure main campus has an edge transport for their site, but we are not setup as a forest or affiliated what so ever. Interestingly enough you send mail to dpt.university.edu the full mail name is displayed.
So we have 1 edge transport here at the dpt.university.edu, I cannot tell too much about central campus. I feel like this could be a dns issue, but our dpt.university.edu has the mail subdomain with the mx record pointing to the smtp server.
I will admit I did not set this up, but it bugs me that I cannot figure it out.
Tim
PS HUH? I looked at the link and things look setup correctly not sure what more I need to do. -
Exchange 2010 install corrupted, need help to remove and reinstall
Completed a fresh install of Exchange 2010 on Windows Server 2008 R2, the install went without any issues, however when opening either the EMC or EMS there is no access, continue to get the following errors in the event log.
Application Log:
Log Name: Application
Source: Microsoft-Windows-IIS-W3SVC-WP
Date: 5/21/2014 8:54:34 AM
Event ID: 2280
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: TFServer4.TFSNET.local
Description:
The Module DLL D:\Exchange2010\Bin\kerbauth.dll failed to load. The data is the error.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-IIS-W3SVC-WP" Guid="{670080D9-742A-4187-8D16-41143D1290BD}" EventSourceName="W3SVC-WP" />
<EventID Qualifiers="49152">2280</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2014-05-21T12:54:34.000000000Z" />
<EventRecordID>8904</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>TFServer4.TFSNET.local</Computer>
<Security />
</System>
<EventData>
<Data Name="ModuleDll">D:\Exchange2010\Bin\kerbauth.dll</Data>
<Binary>7E000000</Binary>
</EventData>
</Event>
I have attempted to reregister the dll and also to replace it however it did not solve the issue, the instance of Exchange can not find the server and or the database on startup. I have attempted to uninstall all the Exchange rolls and have been able to
remove all but the mailbox and Management Tools, when I do I receive this:
Summary: 3 item(s). 2 succeeded, 1 failed.
Elapsed time: 00:00:11
Configuring Prerequisites
Completed
Elapsed Time: 00:00:00
Mailbox Role Prerequisites
Failed
Error:
Uninstall cannot continue. Database 'Mailbox Database 1047019462': This mailbox database contains one or more mailboxes, mailbox plans, archive mailboxes, or arbitration mailboxes. To get a list of all mailboxes in this database, run the command Get-Mailbox
-Database <Database ID>. To get a list of all mailbox plans in this database, run the command Get-MailboxPlan. To get a list of archive mailboxes in this database, run the command Get-Mailbox -Database <Database ID> -Archive. To get a list of all
arbitration mailboxes in this database, run the command Get-Mailbox -Database <Database ID> -Arbitration. To disable a non-arbitration mailbox so that you can delete the mailbox database, run the command Disable-Mailbox <Mailbox ID>. To disable
an archive mailbox so you can delete the mailbox database, run the command Disable-Mailbox <Mailbox ID> -Archive. Arbitration mailboxes should be moved to another server; to do this, run the command New-MoveRequest <parameters>. If this is the
last server in the organization, run the command Disable-Mailbox <Mailbox ID> -Arbitration -DisableLastArbitrationMailboxAllowed to disable the arbitration mailbox. Mailbox plans should be moved to another server; to do this, run the command Set-MailboxPlan
<MailboxPlan ID> -Database <Database ID>.
Click here for help...
http://go.microsoft.com/fwlink/?linkid=30939&l=en&v=ExBPA.14&id=4a96fd69-9cec-4a48-9571-5c9e8ab3cfe9
Elapsed Time: 00:00:00
Organization Prerequisites
Completed
Elapsed Time: 00:00:01
Since I do not have access to EMS and can not perform any of the necessary requirements to remove the mailbox role and uninstall all of exchange and attempt a reinstall.
Any help with this would be most appreciated.Thank you for the reply, I have checked the applicationHost.config as indicated, and the path shown is the same as in the error message, there is no D:\Exchange,Server\V14\Bin\ path, it is as indicated in the error D:\Exchange2010\Bin\. Here is the section
from that applicationHost.config file:
<add name="CertificateMappingAuthenticationModule" image="%windir%\System32\inetsrv\authcert.dll" />
<add name="UrlAuthorizationModule" image="%windir%\System32\inetsrv\urlauthz.dll" />
<add name="DigestAuthenticationModule" image="%windir%\System32\inetsrv\authmd5.dll" />
<add name="IISCertificateMappingAuthenticationModule" image="%windir%\System32\inetsrv\authmap.dll" />
<add name="IpRestrictionModule" image="%windir%\System32\inetsrv\iprestr.dll" />
<add name="kerbauth" image="D:\Exchange2010\Bin\kerbauth.dll" />
As indicated in my post, I have replaced the kerbauth.dll from another functioning exchange 2010 installation and it has not corrected the issue.
At this point I am looking for a solution for removing the mailbox role and being able to complete the uninstall of exchange and perform a clean install.
Any additional help with this is very much appreciated. -
Removing mailbox server from Exchange 2010 DAG - Node not fully cleaned up
Hi,
We are in the process of decommissioning some old Exchange 2010 servers. I have just attempted to remove one of our mailbox servers and have received a number of errors, related to its removal from the DAG.
I have already removed the Public Folder replicas and all mailbox database copies. I then tried to evict the server from the DAG and received the following warning:
I then ran the command that was recommended, from another server and in an administrative command prompt:
I have looked in this log on both the server I ran the command on, a CAS server, and the mailbox server itself and can see no evidence of this error 2 that is listed here.
If I run the Powershell command to look at the DAG I cannot see it there any more. I am assuming that this error message might only be an issue if I was planning on re-using this server somewhere else in Exchange or perhaps adding this server to another
DAG. But I just want to decommission it.
Can anyone put my mind at rest as to whether this is a genuine concern or not. If not my next step is to uninstall Exchange 2010 from this server and turn it off.Hi Belinda,
I get the following:
[PS] C:\Windows\system32>Get-DatabaseAvailabilityGroup
Name Member Servers
Operational Servers
DAG01 {WSR-EX-01, WSR-EX-101, WSR21}
It doesn't look like that server is part of the DAG any more as far as I can see. I just can't explain that error message reported from the cluster command. As far as I can see the server is isolated. I already removed its database copies as a pre-requisite
before removing it from the DAG as per this guide:
http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_27039933.html
I found a nice little script that gave reports on your Public Folder configuration and it highlighted that some of our folders were not being replicated properly across our mailbox servers. This helped me in removing these services from the server.
It is currently doing nothing at this time as far as Exchange Services are concerned. -
We installed Exchange 2010 on a Windows 2012 server and now we cannot uninstall it. When I try to run setup.exe to get options to remove it I get "ExSetupUI.exe has stopped working" and I cannot continue. We never used the new Exchange
server and we just want to remove it from the domain. How can I accomplish this?Tried the command line (actually was setup.com /mode:uninstall) and it got most of the way through but failed in the "Configuring Microsoft Exchange Server" section under "Hub Transport Server Role" and gave the error below.
[10/25/2014 23:32:17.0680] [1] The following 1 error(s) occurred during task execution:
[10/25/2014 23:32:17.0711] [1] 0. ErrorRecord: Service 'Microsoft Exchange Service Host (MSExchangeServiceHost)' cannot be started due to the following error: Cannot start service MSExchangeServiceHost on computer '.'.
[10/25/2014 23:32:17.0711] [1] 0. ErrorRecord: Microsoft.PowerShell.Commands.ServiceCommandException: Service 'Microsoft Exchange Service Host (MSExchangeServiceHost)' cannot be started due to the following error: Cannot start service MSExchangeServiceHost
on computer '.'. ---> System.InvalidOperationException: Cannot start service MSExchangeServiceHost on computer '.'. ---> System.ComponentModel.Win32Exception: The service cannot be started, either because it is disabled or because it has no enabled devices
associated with it
--- End of inner exception stack trace ---
at System.ServiceProcess.ServiceController.Start(String[] args)
at Microsoft.PowerShell.Commands.ServiceOperationBaseCommand.DoStartService(ServiceController serviceController)
--- End of inner exception stack trace ---
[10/25/2014 23:32:17.0727] [1] [ERROR] The following error was generated when "$error.Clear();
if (get-service MSExchangeServiceHost* | where {$_.name -eq "MSExchangeServiceHost"})
restart-service MSExchangeServiceHost
" was run: "Service 'Microsoft Exchange Service Host (MSExchangeServiceHost)' cannot be started due to the following error: Cannot start service MSExchangeServiceHost on computer '.'.".
[10/25/2014 23:32:17.0727] [1] [ERROR] Service 'Microsoft Exchange Service Host (MSExchangeServiceHost)' cannot be started due to the following error: Cannot start service MSExchangeServiceHost on computer '.'.
[10/25/2014 23:32:17.0727] [1] [ERROR] Cannot start service MSExchangeServiceHost on computer '.'.
[10/25/2014 23:32:17.0727] [1] [ERROR] The service cannot be started, either because it is disabled or because it has no enabled devices associated with it
[10/25/2014 23:32:17.0727] [1] [ERROR-REFERENCE] Id=BridgeheadRoleSetterComponent___115c1108e99e4560bd2c03c0fec99908 Component=EXCHANGE14:\Current\Release\Shared\Datacenter\Setup
[10/25/2014 23:32:17.0727] [1] Setup is stopping now because of one or more critical errors.
[10/25/2014 23:32:17.0727] [1] Finished executing component tasks.
[10/25/2014 23:32:17.0743] [1] Ending processing Install-BridgeheadRole
[10/25/2014 23:32:17.0743] [0] The Exchange Server setup operation didn't complete. More details can be found in ExchangeSetup.log located in the <SystemDrive>:\ExchangeSetupLogs folder.
[10/25/2014 23:32:17.0758] [0] End of Setup
[10/25/2014 23:32:17.0758] [0] ********************************************** -
Unable to remove orpahned Exchange 2010 mailbox databse server permantely offline
Greetings,
I am having great problems removing and Exchange 2010 mailbox Database, the server that the database resided upon is permanently offline and gone,
Under Organization Configuration / mailbox
The orphaned database is listed there however I cannot delete it under Database Copies a copy of the orphaned database is listed as offline.
How can I remove this database if the server is offline?run ADSIEDIT.msc
Select Configuration well-known naming configuration -> CN=Configuration -> CN=Services -> CN=Microsoft Exchange -> CN=<YourExchOrgName> -> CN=Administrative Group -> CN=Exchange Administrative
Group (FYDIBOHF23SPDLT) -> CN=Servers > CN=Databases -> Select Exchange 2010 database name and delete
MCP, MCSE 2000 , MCSA 2000 ,MCSA 2003 , MCITP , MCTS , MCT -
Can't add or remove members from an exchange 2010 distribution group
Hello.
i have exchange 2010 SP1. When i connect to the server with administrator login in the EMC, i can't add or remove members from distribution group. I don t understand why because i am admin. I have this error : "You
do not have sufficient permissions. This operation can be performed by a group leader"
how i can change this. I wan t only admin can edit members group
hanks for helpHi,
If you have checked the permission, I suggest you checking the Membership Approval configuration.
1. Closed the option “owner approval is required to join the group”
2. Open the option “anyone can leave this group without being approved by the group owners”
To do this, follow the details at
http://technet.microsoft.com/en-us/library/bb125178.aspx
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. -
Removing old exchange 2003 routing groups from Exchange 2010.
I have migrated over to Exchange 2010(server2008) from Exchange 2003(SBS2003). I've also already run the uninstall for exchange 2003 on the old SBS 2003 server. The old server itself is still running but exchange has been removed and once I get this fixed
I plan to fully remove the old SBS server.
I now get event ID 5020 and 5006 throughout the day on the new server. From what I've read, this happens because the old routing group connectors still exist.
If I run Get-ExchangeServer I get
Name Site ServerRole Edition AdminDisplayVersion
SERVER None
Standard Version 6.5 (Bui...
SERVER2008 hr.local/Configur... Mailbox,... Standard Version 14.0 (Bu...
Am I correct in assuming that the way to fix this now is to go into ADSI edit and delete records under CN=First Administrative Groups? As in delete CN=Routing Groups and CN=Servers and everything under both of those? I'd try this myself but I'm not aware
of any way to restore those records easily if I'm wrong.
Event ID 5006
Cannot find route to Mailbox Server CN=SERVER,CN=Servers,CN=first administrative group,CN=Administrative Groups,CN=HR,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=hr,DC=local for store CN=Public Folder Store (SERVER),CN=First Storage Group,CN=InformationStore,CN=SERVER,CN=Servers,CN=first
administrative group,CN=Administrative Groups,CN=HR,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=hr,DC=local in routing tables with timestamp 27/09/2014 1:57:43 PM. Recipients will not be routed to this store.
Event ID 5020The topology doesn't contain a route to Exchange 2000 Server or Exchange Server 2003 server.hr.local in Routing Group CN=first routing group,CN=Routing Groups,CN=first administrative group,CN=Administrative
Groups,CN=HR,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=hr,DC=local in routing tables with the timestamp 27/09/2014 1:57:43 PM.Get-RoutingGroupConnector shows nothing. As for the servers group. It has the old server under it as shown in the image I posted above. That's actually what stops me from just deleting it because other guides have said not to delete it if an old server
is listed.
Is the SBS2003 server listed because I haven't ran DCPROMO to remove it from the network yet? I am planning to do this but was waiting till I cleaned up all the errors before transferring the 5 FMSO roles and running DCPROMO on the old server.
DCPROMO isn't related to this, no.
So you removed Exchange already? How? With setup? It should have removed the Exchange Server object then.
It is supported to remove Exchange 2003 manually if required with adsiedit:
http://support2.microsoft.com/kb/833396
Twitter!: Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied. -
Configure Exchange 2010 internal mail routing
Hello,
I’m have an Exchange server system which includes exchange 2003 standard edition server and an Exchange 2010 server standard edition server, plus a public SMTP server. Each exchange edition is on a separate machine. The SMTP server is on a separate machine.
I am in the process of retiring the Exchange 2003 server per the following document:
http://support.microsoft.com/kb/822931
Inbound mail arrives at the SMTP server and is forwarded from there to the Exchange 2010 server. All user mailboxes have been moved to the Exchange 2010 server. There is a connector between the Exchange 2003 and Exchange 2010 servers. Both the Exchange 2003
and Exchange 2010 server have a connector to the public SMTP server.
In reviewing some of the log files, it appears that a lot of mail which originates from a user mailbox on the Exchange 2010 server is being sent from the 2010 server to the 2003 server and from there to the public SMTP server. I don’t know how to change
this priority so that no mail will be sent to the Exchange 2003 server. At this point there is no reason for any mail to travel to or from the Exchange 2003 server. Any suggestions on how to change this configuration so that mail goes directly from the Exchange
2010 server to the SMTP server?
Thank you for taking the time to read and hopefully provide a response!Hi,
From your description, I would like to clarify the following thing:
If you have finished the migration successfully, and the Exchange server 2003 is unnecessary. You can remove the connector between Exchange 2003 to Exchange 2010 and the connector between Exchange 2003 to public SMTP server. And then the mail should go directly
from Exchange 2010 to the SMTP server.
Hope my clarification can be helpful.
Best regards,
Amy Wang
TechNet Community Support -
All,
If this isn't the best forum to post in, please let me know.
I am having an issue when I accept calendar invites in the native/modern application for calendaring in Win 8.1. Whenever I then go back to open and view the contents of a meeting, all the notes are truncated and removed after closing that event.
We are running exchange 2010 for the email server.
The machine is not domain joined/managed (local account only).
Any assistance greatly appreciated.
Thanks,
SteveTeam,
Looking for some expert advice here - any assistance would be appreciated. -
I'm trying to remove Exchange 2007 from an SBS 2008 server
(Server 2008 Standard FE). My ultimate goal is to completely remove the SBS 2008 Server from the network environment.
We have an Exchange 2010 Coexistence Scenario and Mailboxes/Public Folders/etc have been moved over to the 2010 mail server, on Server 2008 R2.
I have moved all Shares, FSMO roles, DHCP, DNS, etc over to their respective servers. We have two full blown DC's in the environment.
I'm ready to remove Exchange 2007 from SBS 2008 and DCPROMO the server. I can NOT seem to find a TechNet article that shows me how
to proceed in this kind of scenario. I am trying to use the TechNet article:
http://technet.microsoft.com/en-us/library/dd728003(v=ws.10).aspx
This article references Disabling Mailboxes, Removing OAB, Removing Public Folder Databases, then uninstalling Exchange using the Setup Wizard.
When I go to Disable Mailboxes I get the following error:
Microsoft Exchange Error
Action 'Disable' could not be performed on object 'Username (edited)'.
Username (edited)
Failed
Error:
Object cannot be saved because its ExchangeVersion property is 0.10 (14.0.100.0), which is not supported by the current version 0.1 (8.0.535.0). You will need a later version of Exchange.
OK
I really don't see why I need to Disable Mailboxes, Remove OAB and Public Folder Databases since they have been moved to 2010. I just want
to remove Exchange 2007 and DCPROMO this server (actually I just want to remove any lingering Exchange AD Objects referring to the SBS 2008 Server, using the easiest and cleanest method possible).
Can someone point me in the right direction?
Thanks!Hi,
Based on your description, it seems that you are in a migration process (migrate SBS 2008 to Windows Server
2008 R2). Now, you want to remove Exchange Server and demote server. If anything I misunderstand, please don’t hesitate to let me know.
On current situation, please refer to following articles and check if can help you.
Transition
from Small Business Server to Standard Windows Server
Removing SBS 2008 –
Step 1: Exchange 2007
Removing SBS 2008 – Step 2:
ADCS
Removing
SBS 2008 – Step 3: remove from domain / DCPROMO
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft
does not guarantee the accuracy of this information.
Hope this helps.
Best regards,
Justin Gu -
Removing mailbox server exchange 2010
Dear all,
I have two mailbox servers, when I try to uninstall mailbox server roll on the exchange 2010 Mailbox server1 I get below error msg.
Failed
Error:
This Mailbox server is responsible for generating an Offline Address Book. Removal of the Mailbox role is not permitted
If I move an offline Address book from Mailbox server1 to Mailbox server2 then I guess it should be okay?
Also get below error msg as well, do I need to take care of anything else before I remove the mailbox server role ?
Error:
Setup cannot continue with the uninstall because the 'beremote' () process (ID: 2076) has open files. Close the process and restart Setup.
Thanks !!!Hi Ms-2010,
Before you uninstall the first Exchange 2010 Server, you need to fix few prerequisites warning/errors for a clean uninstallation.
Four points should be considered:
1. Change the OAB (Offline Address Book) generation role to other available server.
2. Remove the server from DAG membership.
3. Move the Arbitration mailboxes to another available Mailbox Server.
4. Ensure that none of the databases are using public folder of this server as default and Move Public folder replica to other available mailbox server.
Hope it is helpful.
Best regards,
Eric -
Exchange 2010: Remove high available mailbox database error
Hello everyone,
I have a two node DAG exchange 2010 and recently split one mailbox database into two databases.
Now when removing the original database I get the following error:
Please provide specific details.
The following was done thus far:
Deleted all softdeleted items
this is not the default mailbox database
Suspended the second mail server and removed it from mailbox, leaving now just one mail server attached to the mailbox database.
HelpTry to check mailbox import request is there or no by this command. Get-MailboxImportRequest. If you can see any requests listed. Remove it by this command Get-MailboxImportRequest | Remove-MailboxImportRequest.
Thanks, MAS
Please mark as helpful if you find my comment helpful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you. -
ACE20 Module with Exchange 2010 Configuration
Hello all,
I have deployed the following configuration for Exchange 2010, if all services are up on the two servers it functions good but if a service goes down on one server (especially outlook) some clients are disconnected (stickiness) ...
Stickiness is needed for all services by ip source sticky and by coockies for OWA.
Because all services are on the same server (ip address) the configured sticky causes problems !!! when a service is down the ACE usually forwards requests to it !!!! Any help please.
Configuration :
XXXXX-ACE1/CTXT-EXCHANGE(config)# do sh run
Generating configuration....
access-list BPDU-Allow ethertype permit bpdu
access-list EXCH-LB line 10 extended permit ip any any
probe http HTTP-GET
interval 10
passdetect interval 10
request method get url /iisstart.htm
expect status 200 202
probe icmp PING
interval 3
probe tcp abport
port 7575
interval 2
faildetect 2
passdetect interval 10
passdetect count 1
connection term forced
probe tcp epmap
port 135
interval 2
faildetect 2
passdetect interval 10
passdetect count 1
connection term forced
probe tcp http
interval 2
passdetect interval 2
passdetect count 1
connection term forced
probe http http-probe
interval 60
passdetect interval 60
passdetect count 2
request method get url /exchweb/bin/auth/owalogon.asp
expect status 400 404
probe tcp https
port 443
interval 2
passdetect interval 2
passdetect count 1
connection term forced
probe http https-probe
interval 60
passdetect interval 60
passdetect count 2
request method get url /owa/auth/login.aspx
expect status 400 404
probe tcp imap
port 143
interval 2
passdetect interval 2
passdetect count 1
connection term forced
probe tcp imaps
port 993
interval 2
passdetect interval 2
passdetect count 1
connection term forced
probe udp ipsec
port 500
interval 2
passdetect interval 2
passdetect count 1
probe icmp ping
interval 2
passdetect interval 2
passdetect count 1
probe tcp pop3
port 110
interval 2
passdetect interval 2
passdetect count 1
connection term forced
probe tcp pop3s
port 995
interval 2
passdetect interval 2
passdetect count 1
connection term forced
probe tcp rpcport
port 7576
interval 2
faildetect 2
passdetect interval 10
passdetect count 5
connection term forced
probe tcp smtp
port 25
interval 2
passdetect interval 2
passdetect count 1
connection term forced
rserver host CAS1
ip address 172.22.101.74
inservice
rserver host CAS2
ip address 172.22.101.76
inservice
rserver host HUB1
ip address 172.22.101.75
inservice
rserver host HUB2
ip address 172.22.101.77
inservice
rserver redirect RPC-REDIRECT
rserver redirect SSLREDIRECT
webhost-redirection https://mail.tunisiana.com/owa 302
inservice
serverfarm host CAS-Outlook
probe PING
probe abport
probe epmap
probe rpcport
fail-on-all
rserver CAS1 135
inservice
rserver CAS1 7575
inservice
rserver CAS1 7576
inservice
rserver CAS2 135
inservice
rserver CAS2 7575
inservice
rserver CAS2 7576
inservice
serverfarm host CAS-http
probe HTTP-GET
probe PING
rserver CAS1 80
inservice
rserver CAS2 80
inservice
serverfarm host CAS-https
probe https
probe ping
rserver CAS1 443
inservice
rserver CAS2 443
inservice
serverfarm host CAS-imap
probe PING
probe imap
rserver CAS1 143
inservice
rserver CAS2 143
inservice
serverfarm host CAS-imaps
probe imaps
probe ping
rserver CAS1 993
inservice
rserver CAS2 993
inservice
serverfarm host CAS-ipsec
probe ipsec
probe ping
rserver CAS1
inservice
rserver CAS2
inservice
serverfarm host CAS-pop3
probe ping
probe pop3
rserver CAS1 110
inservice
rserver CAS2 110
inservice
serverfarm host CAS-pop3s
probe ping
probe pop3s
rserver CAS1 995
inservice
rserver CAS2 995
inservice
serverfarm host CAS-smtp
probe ping
probe smtp
fail-on-all
rserver CAS1 25
inservice
rserver CAS2 25
inservice
serverfarm host HUB
probe ping
probe smtp
rserver HUB1
inservice
rserver HUB2
inservice
serverfarm redirect RPC-REDIRECT
serverfarm redirect SSLREDIRECT
rserver SSLREDIRECT
inservice
parameter-map type http STICKY
persistence-rebalance
parameter-map type connection TCP_IDLE_30min
set timeout inactivity 1800
sticky ip-netmask 255.255.255.255 address source HUB-ST
timeout 30
replicate sticky
serverfarm HUB
sticky ip-netmask 255.255.255.255 address source CAS-http-ST
timeout 30
replicate sticky
serverfarm CAS-http
sticky ip-netmask 255.255.255.255 address source CAS-https-ST
timeout 30
replicate sticky
serverfarm CAS-https
sticky ip-netmask 255.255.255.255 address source CAS-imap-ST
timeout 30
replicate sticky
serverfarm CAS-imap
sticky ip-netmask 255.255.255.255 address source CAS-imaps-ST
timeout 30
replicate sticky
serverfarm CAS-imaps
sticky ip-netmask 255.255.255.255 address source CAS-smtp-ST
timeout 30
replicate sticky
serverfarm CAS-smtp
sticky ip-netmask 255.255.255.255 address source CAS-pop3-ST
timeout 30
replicate sticky
serverfarm CAS-pop3
sticky ip-netmask 255.255.255.255 address source CAS-pop3s-ST
timeout 30
replicate sticky
serverfarm CAS-pop3s
sticky ip-netmask 255.255.255.255 address source CAS-ipsec-ST
timeout 30
replicate sticky
serverfarm CAS-ipsec
sticky ip-netmask 255.255.255.255 address source CAS-Outlook-ST
timeout 30
replicate sticky
serverfarm CAS-Outlook
sticky http-cookie sessionid exchange-sticky-sessionid-grp
timeout 20
serverfarm CAS-http
sticky http-cookie cookie OWA-STICKY
cookie insert browser-expire
timeout 60
replicate sticky
serverfarm CAS-http
sticky http-header Authorization CAS-RPC-HTTP
serverfarm CAS-http
class-map match-any CAS-OUTL-MAPI-VIP
2 match virtual-address 172.22.101.69 tcp any
class-map match-any CAS-Outlook-VIP
2 match virtual-address 172.22.101.69 tcp eq 135
3 match virtual-address 172.22.101.69 tcp eq 7575
4 match virtual-address 172.22.101.69 tcp eq 7576
class-map match-any CAS-http-VIP
2 match virtual-address 172.22.101.69 tcp eq www
class-map match-any CAS-https-VIP
2 match virtual-address 172.22.101.69 tcp eq https
class-map match-any CAS-imap-VIP
2 match virtual-address 172.22.101.69 tcp eq 143
class-map match-any CAS-imaps-VIP
2 match virtual-address 172.22.101.69 tcp eq 993
class-map match-any CAS-ipsec-VIP
2 match virtual-address 172.22.101.69 udp eq 500
class-map match-any CAS-pop3-VIP
2 match virtual-address 172.22.101.69 tcp eq pop3
class-map match-any CAS-pop3s-VIP
2 match virtual-address 172.22.101.69 tcp eq 995
class-map match-any CAS-smtp-VIP
2 match virtual-address 172.22.101.69 tcp eq smtp
class-map match-all CAS_SERVERS
2 match source-address 172.22.101.64 255.255.255.192
class-map match-any HUB-VIP
2 match virtual-address 172.22.101.80 any
class-map match-all HUB_SERVERS
2 match source-address 172.22.101.64 255.255.255.192
class-map match-all OWA-OUTLOOKANYWHERE-SSL
2 match virtual-address 172.22.101.69 tcp eq https
class-map match-all OWA-SSL-CM
2 match virtual-address 172.22.101.69 tcp eq https
class-map match-all OWAREDIRECT
2 match virtual-address 172.22.101.69 tcp eq www
class-map type management match-any REMOTE-MGT
201 match protocol snmp any
202 match protocol http any
203 match protocol https any
204 match protocol icmp any
205 match protocol ssh any
206 match protocol telnet any
policy-map type management first-match REMOTE-MGT
class REMOTE-MGT
permit
policy-map type loadbalance first-match CAS-Outlook-policy
class class-default
sticky-serverfarm CAS-Outlook-ST
policy-map type loadbalance first-match CAS-http-policy
class class-default
sticky-serverfarm CAS-http-ST
policy-map type loadbalance first-match CAS-https-policy
class class-default
sticky-serverfarm CAS-https-ST
policy-map type loadbalance first-match CAS-imap-policy
class class-default
sticky-serverfarm CAS-imap-ST
policy-map type loadbalance first-match CAS-imaps-policy
class class-default
sticky-serverfarm CAS-imaps-ST
policy-map type loadbalance first-match CAS-ipsec-policy
class class-default
serverfarm CAS-ipsec
policy-map type loadbalance first-match CAS-pop3-policy
class class-default
sticky-serverfarm CAS-pop3-ST
policy-map type loadbalance first-match CAS-pop3s-policy
class class-default
sticky-serverfarm CAS-pop3s-ST
policy-map type loadbalance first-match CAS-smtp-policy
class class-default
serverfarm CAS-smtp
policy-map type loadbalance first-match HUB-policy
class class-default
serverfarm HUB
policy-map type loadbalance first-match OWA-OUTLOOKANYWHERE
match OUTLOOK_ANYWHERE http header User-Agent header-value "MSRPC"
policy-map type loadbalance first-match OWA-SSL-PM
class class-default
sticky-serverfarm OWA-STICKY
policy-map type loadbalance http first-match SSLREDIRECT
class class-default
serverfarm SSLREDIRECT
policy-map multi-match CAS-Outlook-POLICY-MAP
class CAS-Outlook-VIP
loadbalance vip inservice
loadbalance policy CAS-Outlook-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match CAS-http-POLICY-MAP
class CAS-http-VIP
loadbalance vip inservice
loadbalance policy CAS-http-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match CAS-https-POLICY-MAP
class CAS-https-VIP
loadbalance vip inservice
loadbalance policy CAS-https-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match CAS-imap-POLICY-MAP
class CAS-imap-VIP
loadbalance vip inservice
loadbalance policy CAS-imap-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match CAS-imaps-POLICY-MAP
class CAS-imaps-VIP
loadbalance vip inservice
loadbalance policy CAS-imaps-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match CAS-ipsec-POLICY-MAP
class CAS-ipsec-VIP
loadbalance vip inservice
loadbalance policy CAS-ipsec-policy
loadbalance vip icmp-reply
policy-map multi-match CAS-pop3-POLICY-MAP
class CAS-pop3-VIP
loadbalance vip inservice
loadbalance policy CAS-pop3-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match CAS-pop3s-POLICY-MAP
class CAS-pop3s-VIP
loadbalance vip inservice
loadbalance policy CAS-pop3s-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match CAS-smtp-POLICY-MAP
class CAS-smtp-VIP
loadbalance vip inservice
loadbalance policy CAS-smtp-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match EXCH-POLICY
class CAS-imap-VIP
loadbalance vip inservice
loadbalance policy CAS-imap-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
class CAS-imaps-VIP
loadbalance vip inservice
loadbalance policy CAS-imaps-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
class CAS-pop3-VIP
loadbalance vip inservice
loadbalance policy CAS-pop3-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
class CAS-pop3s-VIP
loadbalance vip inservice
loadbalance policy CAS-pop3s-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
class CAS-smtp-VIP
loadbalance vip inservice
loadbalance policy CAS-smtp-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
class CAS-http-VIP
loadbalance vip inservice
loadbalance policy CAS-http-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
class CAS-https-VIP
loadbalance vip inservice
loadbalance policy CAS-https-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
class CAS-OUTL-MAPI-VIP
loadbalance vip inservice
loadbalance policy CAS-Outlook-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
policy-map multi-match HUB-POLICY-MAP
class HUB-VIP
loadbalance vip inservice
loadbalance policy HUB-policy
loadbalance vip icmp-reply
connection advanced-options TCP_IDLE_30min
interface vlan 52
description #### vlan client side EXCHANGE ####
bridge-group 1
access-group input BPDU-Allow
access-group input EXCH-LB
service-policy input REMOTE-MGT
service-policy input HUB-POLICY-MAP
service-policy input EXCH-POLICY
no shutdown
interface vlan 54
description #### vlan client side ACE_EXCHANGE ####
bridge-group 1
access-group input BPDU-Allow
access-group input EXCH-LB
service-policy input REMOTE-MGT
service-policy input HUB-POLICY-MAP
service-policy input EXCH-POLICY
no shutdown
interface bvi 1
ip address 172.22.101.123 255.255.255.192
peer ip address 172.22.101.122 255.255.255.192
description EXCHANGE-Bridged-vlans
no shutdown
ip route 0.0.0.0 0.0.0.0 172.22.101.126
Best RegardsThank you for your email. I am out of the office until March 25th, I will have limited access to my e-mail during this period.
In my absence, please feel free to contact Mr Akram Allani : [email protected]
Thank you for your understanding.
Best regards,
Youssef Boukari
Maybe you are looking for
-
THE WORST CUSTOMER SUPPORT EXPERIENCE EVER!!!!!
Around 7:30 pm tonight I paid my Verizon bill in FULL!
-
Function in to_date format...
Hi I have one function which retun value in mm/dd/yyyy format. inside select clause iwant compare this function with mm/yyyy format. but function can not come with to_date format. need help to work wround due to this select query out put getting gene
-
using dreamweaver cs5 i receive this ftp error when trying to upload certain files to my server. index.php - Put operation successful . - error occurred - Access denied. The file may not exist locally, may be open in another program, or there could
-
HT1918 How can i merge my two itunes accounts?
apparently I have two iTunes accounts. How can I merge them and get rid of one.
-
I can not download Windows Security Updates due to incompatibility with FireFox.
Firefox is not allowing critical security updates, or any updates, to Windows and Adobe. It also interferes with my Norton security updates!! (have premium home user software). I don't like this new version of Firefox. I had agreed to be a beta-teste