My philosophy that if you have only one exchange server, two or less sites, one T1 or less, and one way out to the Internet you do not need an expensive or complicated firewall (PIX, Nokia/Checkpoint). If you are handy build a Linux Firewall if not get a watchgaurd or sonicwall. This philosophy is cheaper, better, and easier for small to midsize organizations to manage.
-----Original Message----- From: Robin Lawrie [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 3:47 AM To: MS-Exchange Admin Issues Subject: RE: Exch5.5 and Linux firewall We've got one here........very good, but not cheap. -----Original Message----- From: Bob Peitzke [mailto:[EMAIL PROTECTED]] Sent: 31 October 2001 00:48 To: MS-Exchange Admin Issues Subject: RE: Exch5.5 and Linux firewall Just get a Nokia firewall appliance that comes with Checkpoint Firewall-1 4.1. It's OS is a stripped-down version of BSD Unix, and even a dummy like me can manage the firewall through its GUI interface. Very secure, very reliable. We got the IP 330 model with 3 interfaces for private, public & DMZ. Works great. HTH Bob Peitzke -----Original Message----- From: Lefkovics, William [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 30, 2001 4:19 PM To: MS-Exchange Admin Issues Subject: RE: Exch5.5 and Linux firewall There is only one. www.openbsd.org Well... there's only one that's close. -----Original Message----- From: Ellery July [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 30, 2001 4:18 PM To: MS-Exchange Admin Issues Subject: RE: Exch5.5 and Linux firewall I am still waiting for a secure OS - could you point me in that direction. I need one badly. If I had a secure OS I could spend 5-8% of my work time sleeping. ellery -----Original Message----- From: Lefkovics, William [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 30, 2001 10:54 AM To: MS-Exchange Admin Issues Subject: RE: Exch5.5 and Linux firewall >>your Linux Firewall or if you'd prefer, a firewall on a secure OS. -----Original Message----- From: Ellery July [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 30, 2001 6:16 AM To: MS-Exchange Admin Issues Subject: RE: Exch5.5 and Linux firewall Yes unless your smtp mail is coming in on a different port (which is very unlikely). Depending on your firewall I would have port 25 be able to go to that specific computer ipaddress. If you plan to run OWA you can still use SSL and port 443 with a Linux firewall. Not to get into an argument but MS Proxy is not really and firewall and your Linux Firewall will probably increase your security 90% or more. ellery july Technical Lead Northwest Area Foundation 332 Minnesota e-1201 St. Paul, MN 55101 email - [EMAIL PROTECTED] phone - 651-225-3895 fax - 651-225-7695 -----Original Message----- From: Fred Valdez [mailto:[EMAIL PROTECTED]] Sent: Monday, October 29, 2001 6:03 PM To: MS-Exchange Admin Issues Subject: Exch5.5 and Linux firewall Hello All, Does anyone have experience with exchange 5.5 behind a Linux firewall? I would like to use the firewall the same way ms proxy 2.0 is used. Basically, do I have to open port 25 on Linux and have it rout that traffic to exchange?... thanks, Fred Valdez GSRINC Network Administrator List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm
