We help IT Professionals succeed at work.

Exchange Server 2007 Design Help

doulos777 asked
Last Modified: 2010-03-06
I am setting up a brand new network for a client who will be using Exchange Server 2007 and I need some advice on the new server roles.

The client will have a basic network setup with (2) network servers and probably about 25 users.  I am looking at implementing (2) additional Exchange servers to handle all of the email.

They will need to have OWA, RPC over HTTP, and Exchange Active Sync access to the exchange system (this is called something else now I think).  They will also need to have an anti-spam software product installed as well since all of the mail for their domain will be received directly to these servers with no hosting provider in between.  

Question:  What configuration would you guys recommend for this setup (i.e. server roles and firewalls)?
Watch Question

This can go in any direction

What are you looking to use for Antispam?
Edge Server or 3rd party.. Antispam can be installed on the Hub as well.

You must have CAS,Hub, and MBX server this could be broke out seperate or all installed on the same server.

You could Server 1 install CAS/Hub and Server 2 install mbx

25 users you only really need the 1 server and it wont even know they are connected.

I like ISA but I am a MS guy but really for a small place like that just buy an appliance like a linksys or somthing and it will do the job for the company.
You have sonic wall , symantec etc... which makes SOHO appliances.


Aside from the spam protection, what addtional benefit would i receive by having an Edge Transport Server setup?

Does it help to secure OWA and Outlook Anywhere?

Edge is only for SMTP filter and requires its own hardware to run, you cannot install any other roles on that machine. Note you get all but 1 feature when you install the antispam on the hub server.

The edge is a non domain joined machine that is designed to sit in a dmz and provide smtp filtering


I see.....

It does not look like I need the Edge Transport server.

For security purposes, how would you divide up the server roles if you wanted to have just one of the 2 servers accessible from the internet?

Exchange used to have the front end and back end configurations to accommodate this.
This one is on us!
(Get your first solution completely free - no credit card required)
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.


Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.