OWA Design Question
Exchange Server Forum Index Exchange Server
Discussion forums for Microsoft Exchange Server users.
Microsoft Outlook
 
 FAQFAQ   MemberlistMemberlist     RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 
 
Google
 
Web ExchangeServerHelp.com
OWA Design Question

 
Post new topic   Reply to topic    Exchange Server Forum Index -> Design
Author Message
Eric Hammett
Guest
Posted: Tue Jun 21, 2005 8:59 am    Post subject: OWA Design Question Reply with quote
We currently run two Exchange 2003 Standard servers in diffrent physical
locations (location A and B) connected by a point to point T1, and have a
routing group setup so that all messages go through the location A where our
only MX record is pointing (smtp1.domain.com). My question is we want to
setup OWA with forms based authentication using SSL so users can access
thier mail remotely.

However I want all users to use the same DNS record
(https://smtp1.domain.com/exchange) for OWA however lets say a user has a
mailbox on the Exchange server at location B will that user still be able to
logon to thier appropriate mailbox? Or is this where a FE/BE scenario needs
to be deployed?

Back to top
Al Mulnick
Guest
Posted: Tue Jun 21, 2005 4:59 pm    Post subject: Re: OWA Design Question Reply with quote
If you don't deploy a FE, then you can't abstract the BE server where they
get their mail. What ends up happening is that if you setup a record to
resolve your BE server from smpt1.domain.com, then a user would contact that
BE server, login, and be redirected to
https://servername/exchange/user/inbox (or similar).

Because your firewall rules likely wouldn't allow that, nor would name
resolution likely work (unless you publish your internal DNS FQDNs for you
internal Exchange server names) so the communications would break.

You can verify this by doing this on your internal network. Connect to
http://yourexchange_FQDN/Exchange where yourexchange_FQDN is your server in
RG A. Login with a user-object that has a mailbox in RG B. Note what
happens (you'll get redirected and your Exchange server FQDN in the URL bar
will change to the FQDN of the server in RG B.)

Best bet is to deploy at least one FE server and ISA to publish it. You
could (and likely should) put the FE server in the trusted network and put
ISA on the DMZ or otherwise on the internet with TCP 443 traffic permitted
from it to your FE server and back.

Does that help?


"Eric Hammett" <ehammett (AT) progrp.com> wrote in message
news:%23B6hThhdFHA.2212@TK2MSFTNGP14.phx.gbl...
Quote:
We currently run two Exchange 2003 Standard servers in diffrent physical
locations (location A and B) connected by a point to point T1, and have a
routing group setup so that all messages go through the location A where
our only MX record is pointing (smtp1.domain.com). My question is we want
to setup OWA with forms based authentication using SSL so users can access
thier mail remotely.

However I want all users to use the same DNS record
(https://smtp1.domain.com/exchange) for OWA however lets say a user has a
mailbox on the Exchange server at location B will that user still be able
to logon to thier appropriate mailbox? Or is this where a FE/BE scenario
needs to be deployed?
Back to top
 
Post new topic   Reply to topic    Exchange Server Forum Index -> Design All times are GMT
Page 1 of 1

 
 You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum




Windows Server Dedicated Servers
Contact Us
New Topics Powered by phpBB