Link to home
Start Free TrialLog in
Avatar of Calv1n
Calv1n

asked on

Linux Firewall for Microsoft Exchange Server

Right now I have been asked to add a firewall to our network for our exchange server. We are running Exchange server on a stand alone server that also acts as a secondary dns server for our network. Is there a distro anyone would reccomend? Or is there any applications or services we should use in paticular?

Also what potential complications would there be running a firewall in front of our exchange server/secondary dns server?

Would it be much easier just to run a isa server instead?

Thanks for your help as allways!

-Brian
ASKER CERTIFIED SOLUTION
Avatar of Bud Durland
Bud Durland
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Sembee
Sembee
Flag of United Kingdom of Great Britain and Northern Ireland image
I ran a Linux firewall infront of an Exchange server for two years. It was fine. Exchange doesn't need many ports open - just 25 (smtp) and 443 (https). I only ditched it because I wanted a PIX and its VPN solution.

I used floppyfw for mine. An old 486 with two NICs, no hard disk or CD-ROM drive.

The choice of firewall is down to what you have experience in.

ISA is a complex beast with a learning curve. It is more than just a firewall, it is also a proxy server and will inspect the packets.

If you have confidence in using a Linux solution, then go ahead and use that.
If you want something where you can get a support contract, then look at something like a PIX, Netscreen etc.
Either of those two solutions will be much cheaper than an ISA and will give you a dedicated box.

Simon.