Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Exchange/Outlook Web Access/IIS - secure DMZ setup on Watchguard 750e?

Posted on 2006-11-27
2
Medium Priority
?
820 Views
Last Modified: 2010-08-05
Hi there,

I have been instructed to give secure OWA to our users and I wondered if it is possible to just install IIS on to a Server in the DMZ and then to have OWA requests 'through' that server to be forwarded to our Exchange server on the trusted internal LAN?

i.e. 2 physical boxes - one on trusted LAN and one sitting on DMZ.

Has anyone ever done this on a Watchguard Firebox 750e?

Thanks
0
Comment
Question by:ddh76
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 104

Accepted Solution

by:
Sembee earned 750 total points
ID: 18020595
How do you think putting an Exchange server in the DMZ will provide secure access to OWA?
Please tell me as no one has given me an answer that is acceptable to that question yet.

Putting a domain member in the DMZ is a very bad idea. The number of changes that you have to make to the firewall turns the firewall in to swiss cheese and basically takes away all the security.

There are two ways to provide access to OWA.

1. Simply open port 443 to the internet from your Exchange server. Put an SSL certificate on to the Exchange server.
2. Put an ISA server in the DMZ, that is not a member of the domain and publish OWA through the ISA.

Simon.
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Know the reasons and solutions to move/import EDB to New Exchange Server. Also, find out how to recover an Exchange .edb file and to restore the file back.
Are you an Exchange administrator employed with an organization? And, have you encountered a corrupt Exchange database due to which you are not able to open its EDB file. This article will explain all the steps to repair corrupt Exchange database.
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

660 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question