URL Redirect in IIS7

In this post I will show you how to setup an URL redirect in IIS 7. In this post I will assume you have some working knowledge of IIS.

Open IIS (Start –> Administrative Tools –> IIS Manager)

Expand your Web Server then right click on Sites and choose Add Web Site.

Give the site a name such as domain.com redirect. Be sure to add something to the name so you will know that it is a redirect if you need to reference it later. Put in a path for the web site. Redirects don’t really use the path but IIS won’t let you add the web site without this. I created a directory in the following location: C:\inetpub\redirects. I alwyas create this and use this location to place all of my redirects in. Put in the desired IP address or leave it on all unassigned and click OK.

Now double click on “HTTP Redirect” the properties will appear.

Read more

Setup Exchange 07 using Dynamic IP

Do you want to setup Exchange Server in your house and run your own email server? Let me guess you do not have a static IP address and do not want to get one. Well below are my steps on how to set this up.

What you will need:

  • A Windows domain and an Exchange Server setup.
  • Dynamic DNS service such as no-ip.com or dyndns.com.
  • A purchased domain name from somewhere like voxdomains or any other service. Just make sure you have full management of the DNS.

Go ahead and setup your Domain controller with AD and your Exchange server. I assume you have some working knowledge of domains and networking so I am not going to cover how to do this in this article.

Once you have your Exchange up and ready to go. Go download the no-ip client or update client from the dynamic DNS service you signed up for. This client runs in your system tray and will update your no-ip address with the public IP whenever it changes. Now install the update client on your Exchange box.

Configure your router/firewall to forward incoming traffic on port 25 (my port is different as my ISP blocks incoming port 25. I will explain further below.) to your Exchange server. Configure your router/firewall to allow outgoing traffic on port 25. (my port is different as my ISP blocks outgoing port 25. I will explain further below.)

Go to your domain host and add the address your dynamic DNS service gave you. For example your domain MX record points to test.no-ip.com. Now you should be able to receive and send mail.
Ok. above I mentioned my setup is a little bit different. This is because my ISP (Comcast) blocks outgoing and incoming SMTP traffic on port 25. This is a tactic by them to combat SPAM. They do however allow SMTP traffic in and out on port 587. Below I explain how to get around this.

Read more

Configure Windows NTP client GPO

Some applications on my network were having issues because the workstation clocks had the wrong time. I had to fix this but did not want to manually change it on every workstation. I did not want the user to have to always update this either. What I did is checked the time server my domain controller was using to sync with. It was set to time.windows.com. I used the NET TIME /QUERYSNTP command to check the NTP server.

I then went to Microsoft’s time server list here: http://support.microsoft.com/kb/262680 tracked down the correct time server. Once I found the NTP server I wanted to use I set the Configure Windows NTP client GPO to reflect this so all of the workstations would sync with this time server. Here is the GPO path:

Computer Configuration\Administrative Templates\System\Windows Time Service\Time Providers

I checked the next day and all of the computers on my network had the correct time.
If you don’t want to wait you can run the following commands to stop and start the time service on your clients:

Read more

The target principal name is incorrect.

The Issue:

We requested a new certificate for our website from a CA. We applied the certificate on the Internal IIS6 web server. I then exported the certificate including keys and imported onto our ISA 2006 firewall.

I then went into the publishing rule for our website and updated it with the new certificate.


When external users went to our website using https they got the following error:
Error Code: 500 Internal Server Error. The target principal name is incorrect. (-2146893022)

Read more

Troubleshoot “Server Error in ‘/’ Application”

Have you ever setup a website in IIS and then you got this generic error: “Server Error in ‘/’ Application.

This is what I got right after installing SharePoint server 2007, setting up a portal and trying to access the site. Here is what you need to do to get a more detailed error so you can fix the issue. You need change a couple of settings by modifying the web.config file of your website.

Read more

Lock down shared computers using Steady State

Have you ever needed to lock down a computer for public or shared multiple user use? Have you Ever needed to lock down computers in a non server non centralized environment? I was recently tasked with locking computers down for public use in computer labs at a conference.

It is a challenge to know what users may or may not have changed after using a shared computer. My users needed permission to make changes to the hard drive and or applications during computer use. However I did not want these changes to be permanent.

Some of the problems I have seen from users of shared computers are: spy ware, viruses, the windows theme completely changed, downloaded programs installed, a corrupt OS and more. It takes time to reload an OS or re-image a machine. No one wants to spend time reloading or re-imaging multiple computers if they don’t have to. I discovered a free utility from Microsoft that was exactly what I needed for locking these computers down. It is called Steady State.

Read more

Can’t email remote domain from Exchange

Have you ever had email from one specific domain bounce back from Exchange with status code of: #550 4.4.7 QUEUE.Expired; message expired ##? I ran into this problem. It turned out the mail server on that domain was blocking email coming from our Exchange 2007 mail server. Here is what I did to narrow down the issue.

Read more