NLB and Client Acccess Array

Domain name:1ask2.com
$Description: I:\networklayout.png$
King: DC
Certificate Service is installed and configured. Refer http://www.1ask2.com/Exchange2010/DatabaseAvailabilityGroup/DAG2.html

setup /preparead /organizationName:1ASK2Company

FW and Ex2: Members
setup /m:install /roles:CA,HT,T
Queen and EX1: Members
Setup /m:install /roles:MB,T

New-SendConnector -Name "ToInternet" -Usage 'Internet' -AddressSpaces 'SMTP:*;1' -DNSRoutingEnabled $false -SmartHosts 'Shawmail.vc.shawcable.net' -SmartHostAuthMechanism 'None' -SourceTransportServers EX2,FW

Get-MailboxDatabase | Set-MailboxDatabase -OfflineAddressBook "Default Offline Address Book"

Get-GlobalAddressList | Update-GlobalAddressList
Update-OfflineAddressBook "Default Offline Address Book"
All servers are Windows 2008 R2 with SP1.
TCPIPv6 is disabled for all servers.

Get-MailboxDatabase | fl Server,name,rpc*

Create two “User Mailbox” on the database of EX1:E1 and E2;
Create two “User Mailbox” on the database of QUEEN:Q1 and Q2;

New-ClientAccessArray -Name EXServer -Site "Default-First-Site-Name" -Fqdn "Exserver.1ask2.com"

Get-MailboxDatabase | Set-MailboxDatabase -RpcClientAccessServer "Exserver.1ask2.com"

Setup NLB

IP addresses:
King:191.121.6.3/17
EX1:191.121.6.1/17
EX2:191.121.6.2/17 and 192.168.0.2/24
FW:191.121.6.4/17 and 192.168.0.1/24
EX2:
Servermanagercmd.exe -install nlb
FW:
Servermanagercmd.exe -install nlb
Create a new NLB cluster

After the Client Access array has been created, you'll also need to create the address in DNS and associate it with the virtual IP address used for the Client Access array. My virtual address is the NLB cluster (191.121.3.3).
Create (A) records in DNS server
Dnscmd King.1ask2.com /recordadd 1ask2.com Exserver A 191.121.3.3
Dnscmd King.1ask2.com /recordadd 1ask2.com mail A 191.121.3.3
Mail.1ask2.com is for Internet use.
EXServer.1ask2.com is for internal use.
Create a certificate request:wildcard and assign it to Exchange Server EX2 and FW. Refer http://www.1ask2.com/Exchange2010/DatabaseAvailabilityGroup/DAG2.html
Make sure that RPC over HTTP PROXY feature is installed on both EX2 and FW servers.

Enable-OutlookAnywhere –server EX2 –ExternalHostName ‘mail.1ask2.com’ –DefaultAuthenticationMethod ‘ntlm’ -SSLOffloading:$false


  Enable-OutlookAnywhere –server FW  –ExternalHostName ‘mail.1ask2.com’ –DefaultAuthenticationMethod ‘ntlm’ -SSLOffloading:$false

Test RPC:
https://ex2.1ask2.com/rpc
https://fw.1ask2.com/rpc
Get-MailboxServer ex1 | .\new-TestCasConnectivityUser.ps1

Test-OutlookConnectivity -RpcProxyTestType:Internal -RpcTestType:Server

Get-OwaVirtualDirectory | fl server,name,internalURL
Server      : EX2
Name        : owa (Default Web Site)
InternalUrl : https://ex2.1ask2.com/owa
ExternalUrl :
Server      : FW
Name        : owa (Default Web Site)
InternalUrl : https://fw.1ask2.com/owa
ExternalUrl :
Get-OwaVirtualDirectory | Set-OwaVirtualDirectory -InternalUrl https://exserver.1ask2.com/owa -ExternalURL https://mail.1ask2.com/owa

Get-EcpVirtualDirectory | Set-EcpVirtualDirectory -InternalUrl https://exserver.1ask2.com/ecp -ExternalURL https://mail.1ask2.com/ecp

Get-WebServicesVirtualDirectory | Set-WebServicesVirtualDirectory -InternalUrl https://exserver.1ask2.com/EWS/Exchange.asmx -ExternalURL:https://mail.1ask2.com/EWS/EXchange.asmx

Get-oabvirtualDirectory | Set-OabVirtualDirectory -InternalUrl "https://exserver.1ask2.com/oab" -ExternalURL https://mail.1ask2.com/oab

Get-ClientAccessServer | Set-ClientAccessServer -AutoDiscoverServiceInternalUri https://exserver.1ask2.com/autodiscover/autodiscover.xml

Enable Outlook Logging

1088 126446750 04/29/11 14:24:49 Autodiscover to https://exserver.1ask2.com/autodiscover/autodiscover.xml Succeeded (0x00000000)
5148 126464831 04/29/11 14:25:07 Attempting URL https://exserver.1ask2.com/autodiscover/autodiscover.xml found through SCP
5148 126464831 04/29/11 14:25:07 Autodiscover to https://exserver.1ask2.com/autodiscover/autodiscover.xml starting
5148 126464878 04/29/11 14:25:07 Autodiscover XML Received
---BEGIN XML---
<?xml version="1.0" encoding="utf-8"?>
<Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006">
<Response xmlns="http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a">
<User>
<DisplayName>E1</DisplayName>
<LegacyDN>/o=1ASK2Company/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Recipients/cn=E1</LegacyDN>
<AutoDiscoverSMTPAddress>e1@1ask2.com</AutoDiscoverSMTPAddress>
<DeploymentId>3ef94938-efc0-4c8b-8086-d4bacebab292</DeploymentId>
</User>
<Account>
<AccountType>email</AccountType>
<Action>settings</Action>
<Protocol>
<Type>EXCH</Type>
<Server>Exserver.1ask2.com</Server>
<ServerDN>/o=1ASK2Company/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=Exserver.1ask2.com</ServerDN>
<ServerVersion>738180DA</ServerVersion>
<MdbDN>/o=1ASK2Company/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=Exserver.1ask2.com/cn=Microsoft Private MDB</MdbDN>
<AD>king.1ask2.com</AD>
<ASUrl>https://exserver.1ask2.com/EWS/Exchange.asmx</ASUrl>
<EwsUrl>https://exserver.1ask2.com/EWS/Exchange.asmx</EwsUrl>
<EcpUrl>https://exserver.1ask2.com/ecp/</EcpUrl>
<EcpUrl-um>?p=customize/voicemail.aspx&exsvurl=1</EcpUrl-um>
<EcpUrl-aggr>?p=personalsettings/EmailSubscriptions.slab&exsvurl=1</EcpUrl-aggr>
<EcpUrl-mt>PersonalSettings/DeliveryReport.aspx?exsvurl=1&IsOWA=<IsOWA>&MsgID=<MsgID>&Mbx=<Mbx></EcpUrl-mt>
<EcpUrl-ret>?p=organize/retentionpolicytags.slab&exsvurl=1</EcpUrl-ret>
<EcpUrl-sms>?p=sms/textmessaging.slab&exsvurl=1</EcpUrl-sms>
<EcpUrl-publish>customize/calendarpublishing.slab?exsvurl=1&FldID=<FldID></EcpUrl-publish>
<OOFUrl>https://exserver.1ask2.com/EWS/Exchange.asmx</OOFUrl>
<UMUrl>https://exserver.1ask2.com/EWS/UM2007Legacy.asmx</UMUrl>
<OABUrl>https://exserver.1ask2.com/oab/b3aa16f2-b6ab-4abd-8320-27efc3d04575/</OABUrl>
</Protocol>
<Protocol>
<Type>EXPR</Type>
<Server>mail.1ask2.com</Server>
<SSL>On</SSL>
<AuthPackage>Ntlm</AuthPackage>
<ASUrl>https://mail.1ask2.com/EWS/EXchange.asmx</ASUrl>
<EwsUrl>https://mail.1ask2.com/EWS/EXchange.asmx</EwsUrl>
<EcpUrl>https://mail.1ask2.com/ecp/</EcpUrl>
<EcpUrl-um>?p=customize/voicemail.aspx&exsvurl=1</EcpUrl-um>
<EcpUrl-aggr>?p=personalsettings/EmailSubscriptions.slab&exsvurl=1</EcpUrl-aggr>
<EcpUrl-mt>PersonalSettings/DeliveryReport.aspx?exsvurl=1&IsOWA=<IsOWA>&MsgID=<MsgID>&Mbx=<Mbx></EcpUrl-mt>
<EcpUrl-ret>?p=organize/retentionpolicytags.slab&exsvurl=1</EcpUrl-ret>
<EcpUrl-sms>?p=sms/textmessaging.slab&exsvurl=1</EcpUrl-sms>
<EcpUrl-publish>customize/calendarpublishing.slab?exsvurl=1&FldID=<FldID></EcpUrl-publish>
<OOFUrl>https://mail.1ask2.com/EWS/EXchange.asmx</OOFUrl>
<UMUrl>https://mail.1ask2.com/EWS/UM2007Legacy.asmx</UMUrl>
<OABUrl>https://mail.1ask2.com/oab/b3aa16f2-b6ab-4abd-8320-27efc3d04575/</OABUrl>
<CertPrincipalName>msstd:*.1ask2.com</CertPrincipalName>
</Protocol>
<Protocol>
<Type>WEB</Type>
<Internal>
<OWAUrl AuthenticationMethod="Basic, Fba">https://exserver.1ask2.com/owa/</OWAUrl>
<OWAUrl AuthenticationMethod="Basic, Fba">https://fw.1ask2.com/owa/</OWAUrl>
<Protocol>
<Type>EXCH</Type>
<ASUrl>https://exserver.1ask2.com/EWS/Exchange.asmx</ASUrl>
</Protocol>
</Internal>
<External>
<OWAUrl AuthenticationMethod="Fba">https://mail.1ask2.com/owa/</OWAUrl>
<Protocol>
<Type>EXPR</Type>
<ASUrl>https://mail.1ask2.com/EWS/EXchange.asmx</ASUrl>
</Protocol>
</External>
</Protocol>
</Account>
</Response>
</Autodiscover>
----END XML----
5148 126464878 04/29/11 14:25:07 Autodiscover to https://exserver.1ask2.com/autodiscover/autodiscover.xml Succeeded (0x00000000)

Internal DNS:

External DNS:

Failover Cluster vs. Network Load Balancing
In Failover cluster, the Cluster IP address is bound to only one adapter. In NLB, the Cluster IP address is bound to all member computers’ public NICs.

451 4.4.0 DNS query failed. Why?

Reason: DNS server failed to resolve the smart host address.
Nslookup shawmail.vc.shawcable.net

After the DNS server can resolve shawmail.vc.shawcable.net, the messages are delivered out.

Outlook configuration:

Internal:

Outlook Anywhere:

and,

Test NLB for OWA

Modify the owa Themes for FW and EX2

Accessing owa https://mail.1ask2.com/owa from different computers, different themes will show.