Re: Can SSL version 3 be used on OWA 2003?
- From: "Mark Arnold [MVP]" <mark@xxxxxxxx>
- Date: Tue, 18 Sep 2007 16:02:54 +0100
On Tue, 18 Sep 2007 14:23:19 +0100, "Gonzo" <apollo13@xxxxxxxxxxxxxx>
wrote:
What's the problem with it on the DMZ? Should it be "inside"? I just haveSo, the self ssl isn't a problem. Loads of people have the old basic
port 80/443 open to it on the DMZ to it's external IP and NAT it to it's
iside DMZ IP, wouldn't this be just the same internally?
self-signed jobbie.
The box should not be in the DMZ because of all the ports that need to
be open between DMZ and internal network. Look at your own rule set
and doesn't it make you concerned that you have ports open and
pointing to your GCs?
443 and 25 should be the only ones open. You have no need for 80 or
anything else. If you are uber-concerned about security then actually
not using a FE but instead putting an ISA in the DMZ and publishing
Exchange through that is even more secure.
.
- Follow-Ups:
- Re: Can SSL version 3 be used on OWA 2003?
- From: Gonzo
- Re: Can SSL version 3 be used on OWA 2003?
- References:
- Can SSL version 3 be used on OWA 2003?
- From: Gonzo
- Re: Can SSL version 3 be used on OWA 2003?
- From: Mark Arnold [MVP]
- Re: Can SSL version 3 be used on OWA 2003?
- From: Gonzo
- Can SSL version 3 be used on OWA 2003?
- Prev by Date: Re: OWA stopped working
- Next by Date: Re: Send As
- Previous by thread: Re: Can SSL version 3 be used on OWA 2003?
- Next by thread: Re: Can SSL version 3 be used on OWA 2003?
- Index(es):
Relevant Pages
|
