I currenty have my email gateway server running on a windows 2003 server. I'm using GFI Mail Essentials/Security for my spam/virus/trojan scanner. This server is also a front end Exchange server. It provides OWA access to my remote users. OWA is being accessed via SSL. This leaves only the SMTP and SSL ports open on the firewall to this server. I'm wanting to move my intranet website to this server. It will be only accessible from within the LAN. I will NOT be opening up port 80 on the firewall. This this an okay configuration in regards to security, or, should I look at adding another layer of security?