Exchange and External Domains

Similar Messages

• CRM2015 IFD Internal and External Domains

  I am trying to setup CRM2015 with IFD. My internal domain is xr.local and external domain name is somethingelse.com. When going through the directions and searching through the forums I see similar questions regarding with no real information on the possibility.
  Am I able to set this up to support 2 different domains and where might I find some guidance to do so?
  Thanks...
  GY

  Hi David,
  Yes. the above setup should "do the trick" as the servers you put with blank DNS entry should be excluded in the NRPT table.
  You can confirm this by running at the client: netsh name show polocy
  at command line and see something like:
  Settings for da.domain.com
  Certification authority                 :
  DNSSEC (Validation)                     : disabled
  DNSSEC (IPsec)                          : disabled
  DirectAccess (DNS Servers)              :
  DirectAccess (IPsec)                    : disabled
  DirectAccess (Proxy Settings)           : Use default browser settings
  Settings for .domain.com
  Certification authority                 :
  DNSSEC (Validation)                     : disabled
  DNSSEC (IPsec)                          : disabled
  DirectAccess (DNS Servers)              : 1234:1234:1234:3333::1
  DirectAccess (IPsec)                    : disabled
  DirectAccess (Proxy Settings)           : Bypass proxy
  So in this scenario the .domain.com is using the DA while the specific entry (da.domain.com) is set as exclude and have emptry DNS ...
  Hope this helps,
  Ophir.

• Exchange 2013 DNS for internal and external domain

  Hi All,
  I have been assigned a task to implement Microsoft Exchange Server 2013. I need some help in setting up DNS namespaces and design a strategy to have same internal and external names. Let me share some details here.
  We have an Active Directory domain myinternaldomain.net, and we have a public domain
  mypublicdomain.com and we have setup email policy to have
  mypublicdomain.com as the SMTP domain for all the users. We have created another DNS zone in Active directory integrated DNS and created a records for
  mail.mypublicdomain.com and autodiscover.mypublicdomain.com which will point to CAS NLB IP. We have 2 CAS servers and 2 MBX servers, we have configured DAG for MBX High availability and planning to implement WNLB for CAS as
  hardware LB is out of scope due to budget constrains.
  We want to have same URLs for OWA, Autodiscover, ECP and other services from internal network as well as from public network. Users should not be bothered to remember two URLs, using one from internal and other from public networks. I also want to confirm
  that with this setup in place do i need to have myinternaldomain.net and server names in SAN certificate?
  Thanks

  Hi Sccmnb,
  You can easily achieve this using split DNS.
  Internal DNS hostname "mail.mypublicdomain.com" will be pointing to your internal CAS NLB IP and the external public DNS hostname"mail.mypublicdomain.com" will be pointing to the Network device or
  Reverse proxy server IP.
  Depending upon users access location(internal\external) the IPs would vary and they should be able to access the website with same name.
  The names that you would require on the certificate(Use EAC or powershell to raise the request) for client connectivity would be
  SN= mail.mypublicdomain.com
  SAN= autodiscover.mypublicdomain.com
  You don't need to have the active directory domain name present in the certificate.
  Additional  to this you need to update the AutodiscoverURI for all servers and OWA,ECP,Autodiscover Virtual Directories InternalURL and ExternalURL fields with appropiate public names.
  Some additional Info:
  *Internal vs. External Namespaces
  Since the release of Exchange 2007, the recommendation is to deploy a split-brain DNS infrastructure for the Internet-based client namespaces. A split-brain DNS infrastructure enables different IP addresses to be returned for a given namespace
  based on where the client resides – if the client is within the internal network, the IP address of the internal load balancer is returned; if the client is external, the IP address of the external gateway/firewall is returned.
  This approach simplifies the end-user experience – users only have to know a single namespace (e.g., mail.contoso.com) to access their data, regardless of where they are connecting. A split-brain DNS infrastructure, also simplifies the configuration of Client
  Access server virtual directories, as the InternalURL and ExternalURL values within the environment can be the same value.
  *Managing Certificates in Exchange Server 2013 (Part 2)
  *Nice step by step article
  Designing a simple namespace for Exchange 2013
  Regards,
  Satyajit
  Please“Vote As Helpful”
  if you find my contribution useful or “MarkAs Answer” if it does answer your question. That will encourage me - and others - to take time out to help you.

• Same internal and external domain names - AGAIN!

  Hi all-
  Like many of you, I am confronting the problem of having the same FQDN for both my Active Directory domain and Internet domain.  For the sake of discussion, let's call the domain rlh.com.
  I need to access an externally-hosted website on the rlh.com domain.  The site is coded exclusively to use rlh.com and NOT
  www.rlh.com.  Therefore, the old trick of adding a static www A record on my internal DNS server will not work.
  It looks like another option is to install IIS on my DC and then configure some type of forwarding to the external site.  While this might work, frankly, I don't want IIS on my DC.  It's a DC, not a web server.
  Yet a third option, correct me if I'm wrong, looks to be using some type of "split DNS."  Though I have not read the particulars (yet) of this solution, I am suspicious of it causing DNS inefficiencies.
  All of these solutions look to me to be workarounds.  I am preparing to install a new DC (upgrading from 2003 to 2008 R2) and want to FIX the problem, not work around it.  That said, it looks like I have two options:
  1.  Rename my existing 2003 AD domain using rendom
  2.  Install the new 2008 R2 DC with the new domain name, setup domain trust between the old and new domains, and then use ADMT.
  Can someone please comment on my logic here?  Does anyone have experience with both of the two options?  Is one less painful than the other?
  As I preparatory step, I have migrated from my onsite Exchange 2003 server to Office 365.  Exchange is no longer present in my organization, though some slight "remnants" may remain in Active Directory.  Other than Exchange, I have a
  Hyper-V host, 2 SQL Servers, and 3 RDS servers present in my environment.
  Thanks.

  I realized this was answered, but I would like to add the following comprehensive blog on this subject.
  Can't Access Website with Same Name (Split Zone or no Split Brain)
  Published by Ace Fekay, MCT, MVP DS on Sep 4, 2009 at 12:11 AM  1278  0
  Note - In an AD same name as the external name (split zone) scenario, if you don't want to use WWW in front of URL, such as to access it by
  http://domain.com, then scroll down to "So you don't want to use WWW in front of the domain name"
  http://blogs.msmvps.com/acefekay/2009/09/03/split-zone-or-no-split-zone-can-t-access-internal-website-with-external-name/
  Ace Fekay
  MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
  This posting is provided AS-IS with no warranties or guarantees and confers no rights.

• Lync Implementation with different internal and external domain sync

  Hello Experts,
  Having Windows 2012r2 with Lync 2013 frontend and Edge 2012 server on Win2012. Internal domain name is test.local and Internet domain name is : tgroup.com. Internally all the clients are able to sync with frontend
  server using [email protected] or [email protected] Internal CA and External Digicert works fine. But only problem is with external clients who want to communicate through edge server. 
  Edge server has 3 LAN ip address (nat with public IP), 10.10.10.2, 10.10.10.3, 10.10.10.4 and another Internal network interface which has ip 10.10.20.3
  which uses that to communicate with front-end. 
  How to achieve this ?  We dont have reverse proxy configured and we have only two servers. 
  Regards, Ganesh, MCTS, MCP, ITILV2 This posting is provided with no warranties and confers no rights. Please remember to click Mark as Answer and Vote as Helpful on posts that help you. This can be beneficial to other community members reading the thread.

  The reverse proxy is used to publish URL's like the meet and dialin url, the address book url and the lync mobile client (smart phones and tablets) urls. This doesn't impact the external desktop user access as thats via the edge server. There is more to
  it than that but for the sake of keeping this simple lets stick to that for now.
  As far as SIP domains go. Think of your Lync users as having a SIP address similar to email addresses. You wouldn't have a user with an internal email address but with a different external email address. In fact best practice is to have the Lync SIP address
  match the email address.
  My reccomendation is to use the ttgoup.com as a sip domain and not the test.local
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer"
  Lync Sorted blog

• How to Setup RDS custom property when internal and external domain name space is different

  Hi All
  I am setting up RDS for customer
  My internal domain name is domain.local and my external domain is domain.com
  I came across below PowerShell cmdlets on some blogs because my internal and external name space are different
  Set-RDSessionCollectionConfiguration –CollectionName QuickSessionCollection -CustomRdpProperty “use redirection server name:i:1 `n alternate full address:s:remote.domain.com”
  In above command, remote.domain.com points to which host?
  Is it pointing to RD Session Broker
  OR
  Pointing to RD Session Host servers
  I am not sure what above command will do exactly ?
  Any help will be highly appreciated
  Thanks Best Regards Mahesh

  Hi,
  It all depends who is accessing the RDS Solution.
  If you have a large BYOD or large number of external users, it would be better to use a public certificate.
  Have a look at the following script which will simplyfy the configuration of the RDSH hosts with certificates.
  http://ryanmangansitblog.com/2014/05/20/rds-2012-rdsh-certificate-deployment-script/
  You can use a custom RDP property to hide the Session host names.
  Have a look at the following article on configuring certificates:
  http://ryanmangansitblog.com/2013/03/10/configuring-rds-2012-certificates-and-sso/
  Ryan Mangan | Ryanmangansitblog.wordpress.com | Help keep the forums tidy, if this has helped please mark it as an answer

• Using Mac Mini server, DNS, static IP, and external domain name

  Greetings!
  I need to know the direction to take in order to use my domain name for the great features offered in the mac mini server, while having local and public access to my server with security.
  I am trying to do the following on my new mac mini server:
  -Set up DNS (myserver.private)
  I have a static IP I want to use for all this with my ISP
  -ftp access
  -ichat ([email protected])
  -email ([email protected])
  -ical etc. ([email protected])
  -my work website(mydomain.com) with public access!
  -host websites(other domains)
  I need to know the direction to take in order to use my domain name for these features. I have a domain name with godaddy, and I am happy with keeping it with them, however, how to I make my external domain name work on my private server with public access is the question?
  Thank you,
  Daniel G

  [Read this|http://labs.hoffmanlabs.com/node/1436] as a start; you're basically going to decide if you want to use NAT or not; if you have enough public static IP addresses to avoid the disaster that's NAT. If you want to use NAT (and few reasonable folks want to, but sometimes we have to), then you get to run your own DNS services internally, and establish public DNS and power-forwarding at a (preferably server-grade) firewall. With NAT, you end up with split DNS, and that's covered in the cited document.
  ps: it's easier to [use sftp|http://labs.hoffmanlabs.com/node/942]; while that shares three letters with ftp, it avoids most of the problems of ftp.

• Internal and external domain problem

  Host: oserver. sbsrv. local (internal address)
  Version: 10.1.2.0.2
  Installation Type: Portal and Wireless
  I have installed the oracle portal and works well in the internal network.
  The problem:
  When I try to access from public domain (www.mycompany.com) i get the welcome page from application server (fine) ,but if I press the link (log on to Oracle Application Server Portal) it redirects me to the internal address (http://oserver.sbsrv.local/portal/page?_pageid=0,1&_dad=portal&_schema=PORTAL)
  I edit httpd.conf (Apache) and i change the line from ServerName oserver.sbsrv.local to ServerName www.mycompany.com and i get something like, that : ??????: ??? ???? ?????? ? ???? ????????????? ??????? ??? ?? ???? ??????
  Question:
  How can I map the internal domain: oserver. sbsrv. local (IP 192.168. xx. xx) with public domain www. mycompany. com (IP 62. x. x. x) ?
  thanks.
  Message was edited by:
  user543368

  I did this 3 or 4 years ago and set up the Web-Cache to act as a reverse proxy. There is a paper on Metalink that explains how to set it up but I do not have the Doc ID.
  Also check out the White Paper that illustrates a different method. "Expose your Intranet Portal to the
  Outside World in a Secured Manner
  (aka. A Secured Inside/Outside Portal)" see http://www.oracle.com/technology/products/ias/portal/pdf/admin_security_1014_secured_inside_outside.pdf
  BG...

• Domain on on-premise Exchange and subdomain on Office 365 coexistance

  We have a client with, what seems to me, an odd request regarding their exchange topology. They are a small college and have their mail split between on-premise and O365. Their on-premise Exchange 2013 has email setup for domain.com, used by the
  faculty.  Their O365 is setup for students.domain.com and is sync'd with AD using MSO Dirsync.  Currently, the two do not interact at all and is causing issues with staff emailing students.  Since they are educational, we have advised them
  to move the faculty over to O365, however they throw that option out every time we bring it up.  They want to keep their faculty email on premise and leave the students in the cloud.  They want these separate, but still want the features
  of a single exchange forest.  They want the students to be in the address-book, and be able to use distribution lists between the two.
  What I'm wondering is if hybrid deployment will allow this to happen.  Based off my limited exchange experience, hybrid is used for the same domain across on-premise and O365, not for 2 separate domains.  I feel like two separate domains doesn't
  really matter, since they are all AD mailboxes anyway. 
  What I'm asking is if hybrid deployment would be the way to go for this, and if there would be any documentation as the how to this exactly.  What I'm finding is documentation on the same domain split between the two, not 1 domain on exchange and 1
  domain on O365.
  Any help is appreciated, thank you!

  Thanks for the reply! Fortunately for our situation, all the accounts in O365 are deleted at the end of the semester, so to completely rebuild the O365 setup is not out of the question at all.
  I guess I'm curious about the specifics for this. I've setup hybrid deployment before for a single domain, so I take it this will be similar. I suppose the DNS wouldn't need to change, right? O365 would receive mail for students.domain.com and the exchange
  would receive mail for domain.com.  Then they'd each rely on the connectors to send mail back and forth.  What about DirSync, would I then need to sync the staff as well as students to O365? 
  And how about OWA, would the students then access webmail through OWA, or still use O365?
  Sorry if any of this is basic, exchange is my weakest skillset.
  Thank you!

• External Domain

  I have monitor up and running but for the life of me I can't seem to get the performance testing and acct collecting working. I am trying to follow the directions and I am getting stumped on creating the external domain. Do I have to setup a second GroupWise system to run a single domain, post office and user just so that I can connect to it using and external domain from my main groupwise system? Hopefully I have read that wrong and that is not what I need to do. Any help would be greatly appreciated.

  gibsont <[email protected]> wrote:
  > I have monitor up and running but for the life of me I can't seem to get
  > the performance testing and acct collecting working. I am trying to
  > follow the directions and I am getting stumped on creating the external
  > domain. Do I have to setup a second GroupWise system to run a single
  > domain, post office and user just so that I can connect to it using and
  > external domain from my main groupwise system? Hopefully I have read
  > that wrong and that is not what I need to do. Any help would be greatly
  > appreciated.
  >
  No, this becomes a "dummy" domain. You create an external GroupWise
  domain, make up a name (maybe Monitor), leave the domain database location
  blank and just create it. Go to your monitor console. Click on
  preferences. Scroll down to mtp settings and in the domain to monitor
  choose your new external domain. Put in the port that the monitor will
  listen on. In other words, Monitor will pretend to be an MTA listening on
  this port. So, if monitor is running on the same server as an MTA this has
  to be some open port. Like maybe 7110. Next in the performance testing
  choose what domain monitor should talk to. And check the performance
  testing box if you are configuring performance testing. Save that.
  Now, in ConsoleOne go to link configuration. For the domain listed in the
  performance testing above. Set the link to direct, tcp/IP and put in the
  IP address on monitor, and the port you confirmed above (in my example
  7110).
  Now go back to your external monitor domain and create a PO under it (like
  MonitorPO). Then create a user (MonitorUser). Whoever is the accountant
  for the GWIA should now set a forwarding rule to send the accounting
  reports to this user.
  Let me know if that gets you going, or if you run into other issues.
  Danita - http://www.caledonia.net/blog

• Exchange certificates and services setup for internal and external clients access on separate domains.

  I have the following on my local network.
  Server DomainA -> Small Business server 2003/Exchange 2003
  Server DomainB -> Windows 2008 R2/Exchange 2013
  Clients Domain A ->  Windows XP/Outlook 2003
  Clients Domain B -> Windows 7/Outlook 2007/2010
  Problem:  I want clients from DomainA to log into Exchange on DomainB on the same local network.
  I need to know how to setup the DNS on both domains and the certificates on the DomainB Exchange server
  to accept the connection from the PC on domainA.   All connections from clients on domainB to server on domainB
  work correctly but when adding accounts to Outlook 2003/2007 on domainA clients I am getting certificate errors.
  I have purchased certificates for mail.domainb.com and autodiscover.domainb.com but I dont know how to get 
  the clients on domainA to recognize those external URL's of the exchange server (with the certificates bound to them) from the internal network. Hence I get domain errors.
  I am getting issues when a client on DomainA tries to add an Outlook mail profile to connect to the Exchange on DomainB
  Any suggestions on how to set this up?
  thanks

  Domain A & Domain B are two separate AD Forests?
  Users in Domain A either need mailbox-enabled user accounts that are in DomainB or a linked mailbox in Domain B to utilise the Exchange Server in DomainB. In either case with the help of the autodiscover service user can use the services in ExchangeB. 
  If the client machines are member of domainA and you are trying to access ExchangeB you will then need to leverage a custom XML file for autodiscover and force the Outlook client to use this file. 
  <?xml version="1.0" encoding="utf-8"?> 
  <Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006"> 
    <Response xmlns="http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a"> 
      <Account> 
        <AccountType>email</AccountType> 
        <Action>redirectUrl</Action> 
        <RedirectUrl>https://autodiscover.domain.com/autodiscover/autodiscover.xml</RedirectUrl> 
      </Account> 
    </Response> 
  </Autodiscover>
  Then you need to configure the client machine to query that XML file by adding the following registry key:
  Refer to XML file
  for Outlook 2007:
  HKCU\Software\Microsoft\Office\12.0\Outlook\Autodiscover
  for Outlook 2010:
  HKCU\Software\Microsoft\Office\14.0\Outlook\Autodiscover
  STRING_value <your_namespace> = path to XML file
  you can find more information in the following link.
  Controlling Outlook Autodiscover behavior
  http://blogs.technet.com/b/kristinw/archive/2013/04/19/controlling-outlook-autodiscover-behavior.aspx
  CK

• How to configure AD on windows 2012 server for Exchange 2013 internal and external email flow

  Dear Experts,
  I have to configure exchange 2013 on Windows server 2012 STD. Company has registered Static IP addresses and can get the MX record pointing to any of this Static IP.  
  The registered domain name is e.g.  contoso.com. 
  a. What should I use as domain name on AD? contoso.com or contoso.local
  b. Is it recommended to have two different servers  for AD and Exchange?
  c. What should be my connector settings for mail flow?
  d. how can I set 2 email servers in company for load balancing?

  Hi,
  a, I suggest use contoso.com as domain name. It is convenient to add urls into our certificate for internal and external mail flow.
  b, Recommended that installing AD
  and Exchange Server on two separate
  Servers. If Exchange Server downed unfortunately, it can prevent AD server from crushing at the same time.
  c, Found some articles for your reference:
  Configure Mail Flow and Client Access
  http://technet.microsoft.com/en-us/library/jj218640(v=exchg.150).aspx
  Configuring Outbound Mail Flow in Exchange Server 2013
  http://exchangeserverpro.com/configuring-outbound-mail-flow-in-exchange-server-2013/
  d, Load Balancing
  http://technet.microsoft.com/en-us/library/jj898588(v=exchg.150).aspx
  Hope it is helpful
  Thanks
  Mavis
  Mavis Huang
  TechNet Community Support

• 530 5.7.1 Client was not authenticated - Exchange 2013 to external domains

  Hi all,
  I have an Exchange server 2013 on windows 2012 R2 and do all the configuration for sending and receiving the mail according to the document provided by Microsoft.
  But whenever I am trying to send mails from external domains to my exchange server domain I got the following error:
  530 5.7.1 Client was not authenticated
  Same thing I am getting If I am sending mail through outlook from my Exchange domains to external domain.
  But if I am selecting the
  <label for="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers" id="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers_label">Anonymous
  users in the security option of Default Frontend XXXX, I am able to send the mails through outlook.</label>
  <label for="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers" id="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers_label">But I don't
  want to use this option as it will enable to send the mails without validating the Exchange server user name and password.</label>
  SO can anyone please suggest some solutions to resolve this as using Anonymous users fro sending and receiving mails is not secure.
  Regards
  Pankaj Raman.
  <label for="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers" id="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers_label">
  </label>

  I have a java code for sending mails using the SMTP address of the servers. For sending a mail it required a valid user name and password. For all other SMTP servers if I have used invalid user name and password then I am getting the  530
  5.7.1 Client was not authenticated error, but
  if I am using my SMTP address and invalid user name and password then also I am able to send the mails.
  So I just want to know what I have to configure in the exchange 2013 server so that it will validate the user name and password.
  Regards
  Pankaj Raman.
  Hi Pankaj,
  Thank you for your question.
  Was invalid user name and password included in Java code?
  Did outlook send emails?
  If this issue happen on Java code instead of outlook?
  In fact, Exchange server didn’t validate user account and password, user account and password will be validated on domain controller,
  I suggest we create a new dedicated receive connector and enable “anonymous” permission for java code
  If there are any questions regarding this issue, please be free to let me know. 
  Best Regard,
  Jim
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
  Jim Xu
  TechNet Community Support

• Exchange 2013 SMTP Mail Flow from external domains

  I have query related to mail flow for incoming mails from external domains from Internet facing site. There are two sites - Site A & Site B. Both have Exchange 2013 CAS servers in NLB and Exchange 2013 Mailbox in individual DAG - say DAG1 in Site
  A and DAG2 in Site B. Site A is Internet facing site and site B is not Internet facing.
  An incoming Internet mail meant for recipient in Site B will land in Exchange 2013 CAS server in Site A. This CAS Server in Site A will look for the recipient in local Domain Controller and get to know the mailbox database of this recipient is in DAG2 (
  in site B ) Will the FET service in EX2013 CAS in Site A make a SMTP connection with FET service of EX2013 CAS in site B which will then make SMTP connection to EX2013 Mailbox server in Site B which is holding the recipient mailbox Active copy for delivery.
  OR
  EX2013 CAS will send this mail to Ex2013 Mailbox server in site A and the Hub Transport service running in in site A will then make SMTP connection with EX2013 Mailbox server in Site B which is holding the recipient mailbox Active copy
  Need clarification on above
  Thanks
  Parveen

  Hello,
  Come back and mark the replies as answers if they help and unmark them if they provide no help.
  I'm marking the reply as answer as there has been no update for a couple of days.
  If you come back to find it doesn't work for you, please reply to us and unmark the answer.
  Cara Chen
  TechNet Community Support

• Unable to send and receive email for external domain

  Hi,
  I just installed Exchange Server on my 2K8 domain controller. I have set up the send connector and made necessary changes to the receive connector as well. I have updated the DNS records as well on my domain registrar. I can access OWA from outside my companies
  network and is able to send and receive emails for my domain but unable to send or receive emails to any other domain. I have checked the delivery report and it says that the message has been queued on the server. 
  I also did nslookup. Results mentioned below:
  C:\Users\Administrator>nslookup www.google.com
  Server:  localhost
  Address:  ::1
  Non-authoritative answer:
  Name:    www.google.com
  Addresses:  2404:6800:4009:802::1014
            74.125.236.145
            74.125.236.148
            74.125.236.146
            74.125.236.144
            74.125.236.147
  C:\Users\Administrator>nslookup www.microsoft.com
  Server:  localhost
  Address:  ::1
  DNS request timed out.
      timeout was 2 seconds.
  DNS request timed out.
      timeout was 2 seconds.
  *** Request to localhost timed-out
  Any help would be much appreciated!

  Hi hg01,
  According to your description, I notice that you installed Exchange server on a DC.
  It is not recommended to install Exchange server on a DC. I suggest install Exchange server on a member server. More details to see:
  Installing Exchange on a domain controller is not recommended
  http://technet.microsoft.com/en-us/library/ms.exch.setupreadiness.warninginstallexchangerolesondomaincontroller(v=exchg.150).aspx
  About your issue, cannot send and receive externally, I suggest make sure the DNS can be resolved first.
  Then, check whether Outlook Anywhere has been enabled. If not, please enable it on both Exchange server and Outlook client side.
  Last, try to configure both Send Connector and Receive Connector.
  More detailed error message will be helpful for the further troubleshooting.
  Thanks