Solved

Linux Firewall for Microsoft Exchange Server

Posted on 2006-07-07
2
248 Views
Last Modified: 2006-11-18
Right now I have been asked to add a firewall to our network for our exchange server. We are running Exchange server on a stand alone server that also acts as a secondary dns server for our network. Is there a distro anyone would reccomend? Or is there any applications or services we should use in paticular?

Also what potential complications would there be running a firewall in front of our exchange server/secondary dns server?

Would it be much easier just to run a isa server instead?

Thanks for your help as allways!

-Brian
0
Comment
Question by:Calv1n
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 17

Accepted Solution

by:
BudDurland earned 500 total points
ID: 17063113
If the only functionality you need is firewall, there are several Linux based solutions.  The one I like best (mostly because I'm NOT very familiar with Linux) is SmoothWall Express (www.smoothwall.org). It's free, runs on just about anything pentium based, and installes from a single CD.  It's kid of an appliance.  This is not a linux distro for doing general computing.  it only does firewalling.  It's very easy to configure, and opening ports so that your Exchange box can continue to be a secondary DNS visible to the internet is easily accomplished.

They also have a commercial version that offers more advanced features -- content filtering, access control, VPN, multiple 'red' addresses, etc.
0
 
LVL 104

Expert Comment

by:Sembee
ID: 17065422
I ran a Linux firewall infront of an Exchange server for two years. It was fine. Exchange doesn't need many ports open - just 25 (smtp) and 443 (https). I only ditched it because I wanted a PIX and its VPN solution.

I used floppyfw for mine. An old 486 with two NICs, no hard disk or CD-ROM drive.

The choice of firewall is down to what you have experience in.

ISA is a complex beast with a learning curve. It is more than just a firewall, it is also a proxy server and will inspect the packets.

If you have confidence in using a Linux solution, then go ahead and use that.
If you want something where you can get a support contract, then look at something like a PIX, Netscreen etc.
Either of those two solutions will be much cheaper than an ISA and will give you a dedicated box.

Simon.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I'm a big fan of Windows' offline folder caching and have used it on my laptops for over a decade.  One thing I don't like about it, however, is how difficult Microsoft has made it for the cache to be moved out of the Windows folder.  Here's how to …
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question