I'm having an issue with a setup for a client where we're getting a 404 when accessing CRM IFD externally from the network. When accessed internally everything looks ok. We're not even getting to the sign in page externally the 404 looks like it's happening on the ADFS page before sign in.
We have all CRM roles (w/ Rollup 8) on one server and ADFS 2.0 on a separate server. Used a wildcard cert for both sites sitting on 443. Internal DNS is setup for all URL's and external DNS is setup for the IFD and ADFS URL's. The URL's resolve the correct IP when pinged internal and external, and tested the firewall using telnet to port 443 for ADFS without issue.
I've tried setting the IE options as I know the cache and IE settings can cause a 404 but something else appears to be the culprit here. I've read some others suggest making multiple SPN changes but if this was the issue I wouldn't think it would work internally? I also verified the FS URL's are setup correctly and the RP Trusts look right with the correct identifiers, again everything works internally which is baffling why it won't work externally.
Any ideas are greatly appreciated!
Thanks,
Brian