[x]
Posted via EE Mobile

Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.
Question
[x]
Attachment Details

To DMZ the mail server or not, that is the question.

Asked by LRL455 in Miscellaneous Networking, Internet Security

Tags: networking, security

Here's the lay out.

We have a firewall capable of the three legged DMZ design. The mail server we are going with (icewarp) has allot of services that need to be public accessible. Such as; active sync, syncML, webmail, and of course your normal POP3, SMTP, IMAP. To add to the headache, we need the server to be a domain member and backup to a network drive.

The Options:
1) Put the mail server in the DMZ and deal with the mapping of required ports to the required hosts on the internal network.
2) Put the mail server on the internal network and use a second server in the DMZ to forward emails to port 25 and take the risk of forwarding requests for webmail, active sync, syncml, pop3 and imap into the internal network.
3) Just put the mail server in the internal network and take the risks of forwarding all the required ports.

What would you do? Opinions? Am I missing something?
[+][-]11/03/09 07:35 AM, ID: 25729930Expert Comment

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]11/03/09 07:37 AM, ID: 25729957Expert Comment

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]11/03/09 12:30 PM, ID: 25733244Author Comment

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]11/04/09 02:01 AM, ID: 25737784Expert Comment

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]11/04/09 07:06 AM, ID: 25740027Author Comment

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20091111-EE-VQP-92 - Hierarchy / EE_QW_3_20080625