Re: Can SSL version 3 be used on OWA 2003?
- From: "Gonzo" <apollo13@xxxxxxxxxxxxxx>
- Date: Tue, 18 Sep 2007 16:57:09 +0100
I agree there are a lot of ports open between the DMZ OWA IP and the internal network, so I could just put it internal and just have an outside to internal rule for 443 to this FE Exchange?
With ISA do I just have one Exchanege server then and publish this to the ISA?
"Mark Arnold [MVP]" <mark@xxxxxxxx> wrote in message news:7vpve3dfssh5isqehpbdl92hv6fd9ank0q@xxxxxxxxxx
On Tue, 18 Sep 2007 14:23:19 +0100, "Gonzo" <apollo13@xxxxxxxxxxxxxx>
wrote:
What's the problem with it on the DMZ? Should it be "inside"? I just haveSo, the self ssl isn't a problem. Loads of people have the old basic
port 80/443 open to it on the DMZ to it's external IP and NAT it to it's
iside DMZ IP, wouldn't this be just the same internally?
self-signed jobbie.
The box should not be in the DMZ because of all the ports that need to
be open between DMZ and internal network. Look at your own rule set
and doesn't it make you concerned that you have ports open and
pointing to your GCs?
443 and 25 should be the only ones open. You have no need for 80 or
anything else. If you are uber-concerned about security then actually
not using a FE but instead putting an ISA in the DMZ and publishing
Exchange through that is even more secure.
.
- Follow-Ups:
- Re: Can SSL version 3 be used on OWA 2003?
- From: Mark Arnold [MVP]
- Re: Can SSL version 3 be used on OWA 2003?
- References:
- Can SSL version 3 be used on OWA 2003?
- From: Gonzo
- Re: Can SSL version 3 be used on OWA 2003?
- From: Mark Arnold [MVP]
- Re: Can SSL version 3 be used on OWA 2003?
- From: Gonzo
- Re: Can SSL version 3 be used on OWA 2003?
- From: Mark Arnold [MVP]
- Can SSL version 3 be used on OWA 2003?
- Prev by Date: Re: Timout control with RPC/HTTP
- Next by Date: Re: Send As
- Previous by thread: Re: Can SSL version 3 be used on OWA 2003?
- Next by thread: Re: Can SSL version 3 be used on OWA 2003?
- Index(es):
Relevant Pages
|
Loading
