StephenTMA
Guest
|
 Posted:
Tue Apr 05, 2005 11:15 pm Post subject:
Should I use a Front -End server |
|
|
I am having a debate with a consultant who wants to put a front end server
out on our DMZ to segregate any contact the outside world has with our
network. He says that putting it and have the back-end go and retreive would
provide the best security. We will have SMTP, POP, and OWA enabled. Now
while I know and ISA for this would be MS choice and possibly the best,
financially we cannot do that. My question is how much more vulnarable would
we be just to put that all on the back-end in our network, of course using
SSL.
Thanks for your time
|
|
Brian Desmond [MVP]
Guest
|
| Posted:
Wed Apr 06, 2005 7:11 am Post subject:
Re: Should I use a Front -End server |
|
|
Stephen,
You're not really better off putting a seperate frontend in your DMZ subnet
than you are just throwing an SSL cert on the backend. With one mailbox
server, I'd just do the latter.
Check out the Front-end/back-end security question thread a couple down for
more chatter about this.
--
--Brian Desmond
Windows Server MVP
desmondb@payton.cps.k12.il.us
www.briandesmond.com
"StephenTMA" <StephenTMA@discussions.microsoft.com> wrote in message
news:8EA47C4E-E247-495C-8B24-30C446637F86@microsoft.com...
| Quote: | I am having a debate with a consultant who wants to put a front end server
out on our DMZ to segregate any contact the outside world has with our
network. He says that putting it and have the back-end go and retreive
would
provide the best security. We will have SMTP, POP, and OWA enabled. Now
while I know and ISA for this would be MS choice and possibly the best,
financially we cannot do that. My question is how much more vulnarable
would
we be just to put that all on the back-end in our network, of course using
SSL.
Thanks for your time |
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in