Re: Exhange 2003 in a DMZ

From: Tim <tzl024@xxxxxxxxxxxxxxxxxx>
Date: Fri, 30 Dec 2005 15:07:18 -0800

On Fri, 30 Dec 2005 09:59:03 -0800, Jonathan Norris
<JonathanNorris@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:

>I wouldn't recoomend intalling an Exchange Server in the DMZ. You would have
>to open up tons of ports to your internal network between the two servers.
>
>You should look at ISA and possibly an SMTP Gateway to publish the required
>ports and services.

Jonathan is right about open up tons of ports...I, however, have
FE (DMZ) with public IP and BE (internal) with private IP. BTW, my FE
is a member server of the domain.
My tips to you, if you want to go this way:

1. The communication channel between DMZ/Internal should be
established prior setting up the FE (DMZ),i.e. open appropriate ports.
2. Install OS on FE and join the domain prior to installing EXC-2k3
3. You know the rest...

I followed the following article and many others for my setup:

http://www.microsoft.com/technet/prodtechnol/exchange/guides/E2k3FrontBack/3beec46b-188a-4067-9f1e-c9fe17e1cb9f.mspx

Tim
.

Prev by Date: Re: Can't open other mailboxes after successful moved
Next by Date: RE: Determining Organization name from Exchange backup?
Previous by thread: Re: Exhange 2003 in a DMZ
Next by thread: RE: Determining Organization name from Exchange backup?
Index(es):
- Date
- Thread

Relevant Pages

Re: No front-end in DMZ
... ISA server is out of consideration at all immediately. ... ISA server placed in the DMZ requires (as to best ... internal network card to be connected to internal network directly, ... and open above named ports just between these two. ...
(microsoft.public.exchange.admin)
Re: Forwarding traffic originating from a specific Internet host
... certain server on the Internet to a server on my internal network over ... specific ports with return traffic going out over a specific port ... it to the outside interface via an access-group command ...
(comp.dcom.sys.cisco)
Re: Simple question about Exchange 2003 Server Topology
... So the VPN and Proxy Server are sitting in a DMZ? ... to configure one of the ports on your Pix for a secure connection to your ... servers on the internal network. ...
(microsoft.public.exchange.design)
Re: Exhange 2003 in a DMZ
... >I wouldn't recoomend intalling an Exchange Server in the DMZ. ... >to open up tons of ports to your internal network between the two servers. ...
(microsoft.public.exchange.setup)
Re: Whats a decent modem/router for tech savy user?
... It is not possible to route or deny traffic to specific ports based on the source IP address. ... But it wont route back inside the LAN - needs internal DNS server spoofing. ... Normally, this option should be Enabled, so that an Internet connection will be made automatically, whenever Internet-bound traffic is detected. ... Specifying a Default DMZ Server allows you to set up a computer or server that is available to anyone on the Internet for services that you haven't defined. ...
(uk.telecom.broadband)