Re: OWA front end server in the DMZ
- From: "Tim Gordon" <tim@xxxxxxxxxx>
- Date: Wed, 24 Aug 2005 16:00:55 GMT
"Al Mulnick" <amulnick_No_SPAM@xxxxxxxxxxx> wrote in message
news:%23zP4yp$pFHA.748@xxxxxxxxxxxxxxxxxxxxxxx
> Pretty much you just open all ports from the FE server to the AD, DNS, and
> Exchange servers on your lan. You could narrow it down to about 8 ports
> and protocols, but at that point why bother? May as well just allow TCP
> 443 all the way to the trusted network FWIW. Of course, if you leave OWA
> in a DMZ, you do limit some of the traffic that machine can get to by not
> allowing it to attack other resources outside of AD, DNS, and Exchange
> servers.
>
> Have you considered what ISA can do for you?
>
> As for a white paper, see the FE/BE information at
> http://www.microsoft.com/exchange/library
>
> Al
>
>
> "Tim Gordon" <tim@xxxxxxxxxx> wrote in message
> news:7sHOe.37$hR5.2@xxxxxxxxxxxxxxxxxxxxxxx
>> Hi,
>>
>> Quick question: We are currently running Exchange 2003 Enterprise inside
[snipped quoted]
Thanks Al,
Can't really consider ISA. This is at a site that is secured by another
party and any changes to the firewalls I must run past them in advance -
hence my post.
Tim
--
I never wish I was not what I was not when I didn't wish what I was not was
not what I am not.
.
- Follow-Ups:
- Re: OWA front end server in the DMZ
- From: Al Mulnick
- Re: OWA front end server in the DMZ
- References:
- OWA front end server in the DMZ
- From: Tim Gordon
- Re: OWA front end server in the DMZ
- From: Al Mulnick
- OWA front end server in the DMZ
- Prev by Date: Re: RPC over HTTP single server setup
- Next by Date: Re: RPC over HTTP single server setup
- Previous by thread: Re: OWA front end server in the DMZ
- Next by thread: Re: OWA front end server in the DMZ
- Index(es):
Relevant Pages
|
Loading
