RE: OWA and SMTP

Exchange Discussions Subject: RE: OWA and SMTP But you don't have to open those 20 ports to the entire world. You can only specify that the FE should be able to talk to the BE and the DCs. I agree - it is more work to set up and maintain. Sincerely, Andrey Fyodorov, Exchange MVP Syste

RE: OWA and SMTP

erion -Original Message- From: Ely, Don [mailto:[EMAIL PROTECTED] Sent: Thursday, December 11, 2003 9:30 AM To: Exchange Discussions Subject: RE: OWA and SMTP Because Microsoft and Security are synonymous, of course! If one chooses to put their FE server in the DMZ, open the bazillion ports req

RE: OWA and SMTP

0, 2003 10:15 AM To: Exchange Discussions Subject: RE: OWA and SMTP Ed, It takes 7 ports from front end server for windows 2000 communication plus the exchange ports to make it work. So my only argument is that if the front end box gets compromised, hackers has access to those seven ports and whe

RE: OWA and SMTP

No, it should be on the edge of your network... ;o) -Original Message- From: David, Andy [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 3:11 PM To: Exchange Discussions Subject: RE: OWA and SMTP Shouldn't the ISA server be in the DMZ? -Original Message-

RE: OWA and SMTP

N at least makes you more aware that the threat is there and you're only opening 2-3 ports versus about 20. -Original Message- From: Fyodorov, Andrey [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 11:13 AM To: Exchange Discussions Subject: RE: OWA and SMTP Why do

RE: OWA and SMTP

-MVP Sr. Systems Administrator Inovis Inc. > -Original Message- > From: Ed Crowley [MVP] [mailto:[EMAIL PROTECTED] > Sent: Wednesday, December 10, 2003 8:42 PM > To: Exchange Discussions > Subject: RE: OWA and SMTP > > > Those are very powerful seven (your num

RE: OWA and SMTP

the world from PSTs and Bricked Backups!T -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Davinder Gupta Sent: Wednesday, December 10, 2003 7:15 AM To: Exchange Discussions Subject: RE: OWA and SMTP Ed, It takes 7 ports from front end server for wi

RE: OWA and SMTP

inder -Original Message- From: Ed Crowley [MVP] [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 11:00 PM To: Exchange Discussions Subject: RE: OWA and SMTP There's a whitepaper on the Exchange 2000 web site about using ISA. Ed Crowley MCSE+Internet MVP Freela

RE: OWA and SMTP

Sent: Tuesday, December 09, 2003 8:30 AM To: Exchange Discussions Subject: RE: OWA and SMTP Can you point me to those articles/white papers etc. ?? I would like to look into the possibility of using ISA and keeping FE server in DMZ. Thanks Davinder -Original Message- From: Martin Black

RE: OWA and SMTP

Of Martin Blackstone Sent: Tuesday, December 09, 2003 8:24 AM To: Exchange Discussions Subject: RE: OWA and SMTP Or my favorite: There is the right way, the wrong way, or the Microsoft way. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Eric Fretz Sent:

RE: OWA and SMTP

Shouldn't the ISA server be in the DMZ? -Original Message- From: Martin Blackstone [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 11:17 AM To: Exchange Discussions Subject: RE: OWA and SMTP Don't they show ISA in there as well? -Original Message- Fr

RE: OWA and SMTP

: Exchange Discussions Subject:RE: OWA and SMTP Don't they show ISA in there as well? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Fyodorov, Andrey Sent: Tuesday, December 09, 2003 8:13 AM To: Exchange Discussions Subject: RE: OWA and SMTP W

RE: OWA and SMTP

Or my favorite: There is the right way, the wrong way, or the Microsoft way. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Eric Fretz Sent: Tuesday, December 09, 2003 8:17 AM To: Exchange Discussions Subject: RE: OWA and SMTP I'm reminded o

RE: OWA and SMTP

stone [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 10:17 AM To: Exchange Discussions Subject: RE: OWA and SMTP Don't they show ISA in there as well? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Fyodorov, Andrey Sent: Tuesday, Dec

RE: OWA and SMTP

Don't they show ISA in there as well? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Fyodorov, Andrey Sent: Tuesday, December 09, 2003 8:13 AM To: Exchange Discussions Subject: RE: OWA and SMTP Why do Microsoft FE/BE whitepapers show FE i

RE: OWA and SMTP

Why do Microsoft FE/BE whitepapers show FE in DMZ? -Original Message- From: Martin Blackstone [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 10:58 AM To: Exchange Discussions Subject: RE: OWA and SMTP I couldn't have said it better myself. -Original Message-

RE: OWA and SMTP

I couldn't have said it better myself. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ben Winzenz Sent: Tuesday, December 09, 2003 7:56 AM To: Exchange Discussions Subject: RE: OWA and SMTP What I don't understand is why everyone thinks th

RE: OWA and SMTP

m the Exchange mailbox server. Ben Winzenz Network Engineer Gardner & White (317) 581-1580 ext 418 -Original Message- From: Davinder Gupta [mailto:[EMAIL PROTECTED] Posted At: Tuesday, December 09, 2003 10:45 AM Posted To: Exchange (Swynk) Conversation: OWA and SMTP Subject: RE: OWA a

RE: OWA and SMTP

Could you be a little more specific about the careful part?? -Original Message- From: Fyodorov, Andrey [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 7:50 AM To: Exchange Discussions Subject:RE: OWA and SMTP Isn't Exchange 2003 more IPSec-friendly? B

RE: OWA and SMTP

s Davinder -Original Message- From: Eric Fretz [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 7:20 AM To: Exchange Discussions Subject: RE: OWA and SMTP I totally agree. It is much easier to do extensive logging (and packet filtering, for that matter) with a go

RE: OWA and SMTP

ginal Message- From: Eric Fretz [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 7:20 AM To: Exchange Discussions Subject: RE: OWA and SMTP I totally agree. It is much easier to do extensive logging (and packet filtering, for that matter) with a good layered firewal

RE: OWA and SMTP

. Rockwall, TX 75032 tel: 972.772.7501 fax: 972.772.7510 -Original Message- From: Ben Winzenz [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 9:20 AM To: Exchange Discussions Subject: RE: OWA and SMTP Why go through the hassle? It is much easier (and just as secure) to simply put

RE: OWA and SMTP

y, December 09, 2003 9:36 AM Posted To: Exchange (Swynk) Conversation: OWA and SMTP Subject: RE: OWA and SMTP Have FE and BE on separate VLANs and set up access lists on the routers allowing just the back-end VLAN to only accept traffic from the front-end VLAN if it is coming from the FE server

RE: OWA and SMTP

: Exchange Discussions Subject: RE: OWA and SMTP What Martin is saying is that those are not the only ports you have to open. There are MANY more that are required to be opened to allow for communication between the FE server and the BE server, and communication betweent the FE server and the DC/GC serve

RE: OWA and SMTP

:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 9:29 AM To: Exchange Discussions Subject: RE: OWA and SMTP What Martin is saying is that those are not the only ports you have to open. There are MANY more that are required to be opened to allow for communication between the FE server and the BE

RE: OWA and SMTP

ext 418 -Original Message- From: Eric Fretz [mailto:[EMAIL PROTECTED] Posted At: Tuesday, December 09, 2003 9:09 AM Posted To: Exchange (Swynk) Conversation: OWA and SMTP Subject: RE: OWA and SMTP He just asked for the ports and I pointed him to the kb on open ports. I agree that putting

RE: OWA and SMTP

: 972.772.7510 -Original Message- From: Martin Blackstone [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 09, 2003 8:10 AM To: Exchange Discussions Subject: RE: OWA and SMTP Its much more extensive than that when putting the FE in the DMZ -Original Message- From: [EMAIL

RE: OWA and SMTP

Its much more extensive than that when putting the FE in the DMZ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Eric Fretz Sent: Tuesday, December 09, 2003 5:55 AM To: Exchange Discussions Subject: RE: OWA and SMTP 80(HTTP), 443(SSL) and a few others

RE: OWA and SMTP

80(HTTP), 443(SSL) and a few others. Check out kb# 280132 Eric Fretz L-3 Communications ComCept Division 2800 Discovery Blvd. Rockwall, TX 75032 tel: 972.772.7501 fax: 972.772.7510 -Original Message- From: Davinder Gupta [mailto:[EMAIL PROTECTED] Sent: Monday, December 08, 2003 7:

RE: OWA and SMTP

You are going down a road that you do not want to go down. You understand that in order to be a FE server, you have to be running Exchange Enterprise edition, right? (ok, if you run Exchange 2003, you can run Standard edition) The only ports you would have to open up from the outside to the FE se

RE: OWA and SMTP

There are KB articles about static port mappings in Exchange 2000. -Original Message- From: Davinder Gupta [mailto:[EMAIL PROTECTED] Sent: Monday, December 08, 2003 11:08 AM To: Exchange Discussions Subject: RE: OWA and SMTP Of course, I want it be secure. The external ports you

RE: OWA and SMTP

ECTED] Sent: Monday, December 08, 2003 8:02 AM To: Exchange Discussions Subject: RE: OWA and SMTP Depending on what kind of setup you'll be doing and what type of security you're going to be implementing. But for starters you want to atleast open port 25 (SMTP traffic) a

RE: OWA and SMTP

There are a bunch of Exchange hosting whitepapers that discuss front-end/back-end deployment including which ports need to be open. Look at http://www.microsoft.com/isn Sincerely, Andrey Fyodorov, Exchange MVP Systems Engineer Messaging and Collaboration Spherion -Original Message- From

RE: OWA and SMTP

Depending on what kind of setup you'll be doing and what type of security you're going to be implementing. But for starters you want to atleast open port 25 (SMTP traffic) and 443 (for SSL). _ John Bowles Exchange Engineer OIG/HHS [EMAIL PROTECTED]