Exchange FrontEnd BackEnd Configuration
Exchange Server Forum Index Exchange Server
Discussion forums for Microsoft Exchange Server users.
Microsoft Outlook Forum
 
 FAQFAQ   MemberlistMemberlist     RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 
 
Exchange FrontEnd BackEnd Configuration
Post new topic   Reply to topic    Exchange Server Forum Index -> Design
Author Message
michel
Guest
Posted: Wed Nov 16, 2005 5:58 pm    Post subject: Exchange FrontEnd BackEnd Configuration Reply with quote
My company has decided that we are going to deploy exchange 2003.
And it is my job to figure out what the best config is for our situation.
I've read dozens of articles and blogs and still no way near a suitable
solution. Therefore this post:

We have a DMZ with it's own AD, let's call that: DOMAINA and let's call our
internal network DOMAINB. My first plan was to setup two Exchange servers
one acts as a Bridgehead/Relay in the DMZ and one acts as a mailbox server
on our internal network. The problem is that the bridgehead can't reach
DOMAINB so it can't read the configuration from that AD.

I can't believe I'm the only one who's going for this sort of config. Does
anyone has any real life experience with these kinds of configs? What's the
best plan for setting up such an environment?

Thanks in advance

Back to top
Bharat Suneja
Guest
Posted: Wed Nov 16, 2005 5:58 pm    Post subject: Re: Exchange FrontEnd BackEnd Configuration Reply with quote
- Since you mentioned bridgehead/relay, I'm assuming you're talking SMTP.
FEs are commonly setup for HTTP, IMAP and POP3. As far as SMTP's concerned,
there's no difference between SMTP on FE or BE.

- You can install a SMTP relay in the DMZ, whether part of the DMZ domain or
a standalone box. All you need is Windows SMTP service installed on it.

- For outbound email from your Exchange, configure a SMTP Connector with
address space * and insert this DMZ SMTP host's fqdn/ip address as
smarthost. Make sure the DMZ host can resolve internet names (DNS) and has
outbound SMTP.
- For inbound email, insert A record for DMZ host's public/NATted IP
address, and a MX pointing to the A in external DNS, open SMTP from outside
to it. Follow KBA 324272 to configure SMTP svc on the DMZ box to relay for
your domain(s) and forward to your internal Exchange server as smarthost.
--
Bharat Suneja
MCSE, MCT
www.zenprise.com
blog: www.suneja.com/blog
Back to top
michel
Guest
Posted: Thu Nov 17, 2005 9:58 am    Post subject: Re: Exchange FrontEnd BackEnd Configuration Reply with quote
We need that frontend for OWA. So I guess that this frontend should go in
the DMZ.
But how should this be installed?
There's no way to reach DOMAINB. Are there any solutions for that?
Back to top
Bharat Suneja
Guest
Posted: Thu Nov 17, 2005 5:58 pm    Post subject: Re: Exchange FrontEnd BackEnd Configuration Reply with quote
Is DomainB in DMZ in its own Forest? If yes, installing a FE there will not
work for Exchange servers in DomainA, which are in a separate Forest.
Exchange Organizations cannot span multiple Forests.

If they're in the same Forest, you will need to open the necessary ports in
your firewall.
http://www.microsoft.com/technet/prodtechnol/exchange/guides/E2k3FrontBack/f9733398-a21e-4b40-8601-cfb452da82ad.mspx

It's not recommended to locate FE Exchange boxes in DMZs.

--
Bharat Suneja
MCSE, MCT
www.zenprise.com
blog: www.suneja.com/blog
Back to top
 
Post new topic   Reply to topic    Exchange Server Forum Index -> Design All times are GMT
Page 1 of 1

 
 You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Access Forum - Dedicated Servers

Contact Us Powered by phpBB