Re: RPC over HTTP: Single server or FE/BE setup?
- From: "Rich Matheisen [MVP]" <richnews@xxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 19 Jun 2007 20:57:18 -0400
Chris Lukowski <ChrisLukowski@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Due to security concerns about their laptops being used as piggybacks for
hackers, our IT manager wants to move away from having our clients connect to
our Exchange 2003 server using VPN connections that potentially open up our
entire network. Since that is their only reason for doing so, we think an RPC
over HTTP setup for Oulook would tighten up security quite a bit since they
won't be able to access any of our network shares that way. The question now
is how to properly configure it. Right now we have a single server
environment with OWA w/ SSL installed and want to know if the proper way to
implement RPC over HTTP is with a second Front End server. We are willing to
drop the money if it buys us tangible security, but if there really isn't an
advantage then I'd rather just use our existing Exchange server to configure
it on. I just need to know the facts before making this decision. Please
advise.
If security is a concern, put an ISA server in the DMZ and publish the
necessary URLs from there. With only one Exchange backend server a FE
server realy isn't necessary.
--
Rich Matheisen
MCSE+I, Exchange MVP
MS Exchange FAQ at http://www.swinc.com/resource/exch_faq.htm
Don't send mail to this address mailto:h.pott@xxxxxxxxxxxxx
Or to these, either: mailto:h.pott@xxxxxxxxxxxxxxx mailto:melvin.mcphucknuckle@xxxxxxxxxxxxx mailto:melvin.mcphucknuckle@xxxxxxxxxxxxxxx
.
- Prev by Date: Re: Moving public folders from dead exchange 2003 server
- Next by Date: Re: POP3 Connector - SBS2003
- Previous by thread: Re: RPC over HTTP: Single server or FE/BE setup?
- Next by thread: Re: recover mailbox
- Index(es):
Relevant Pages
|
