?
Solved

Exchange 2007 Deployment  - Help Needed

Posted on 2007-11-19
2
Medium Priority
?
236 Views
Last Modified: 2010-03-06
In the past I deployed and managed an Exchange 2003 server for a small company with no front end smtp.  I am in the process of developing a deployment for Exchange 2007 for a 200 user organization and I have a few questions for the experienced experts.

This deployment is not a migration from an earlier server but a new installation of Exchange 2007 for a new domain. I understand what the EdgeT role is for but have you found that it is really worth the extra money for the spam and security that it provides?  Originally I was planning for a 3rd party spam appliance which seems to be a better spam solution.  Also, I am not quite sure how this configuration would work from the public standpoint. I would have an EdgeT in the DMZ (Firewall DMZ Public IP 999.999.9.1  and Internal IP 192.168.1.5) and then the client access role on the internal server ( Firewall Public IP 999.999.9.2 and Internal IP 192.168.3.6).  I am assuming that my public DNS would point SMTP to the EdgeT server to allow public (SMTP) emails in and then setup the public DNS mail record to 999.999.9.2 public address to access the OWA?  Would this be the correct setup?

Has anyone installed the EdgeT as well as implemented a 3rd party spam filter for layered filtering? Pros/Cons?
0
Comment
Question by:preshomes
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Accepted Solution

by:
Don S. earned 2000 total points
ID: 20314988
Because you cannot put the client access roll on an Edge server in the DMZ, it's maybe less usefull than MS would like you to think - UNLESS you are using it in an ISA configuration which is the officially blessed MS configuration.  An Edge server, however, will off load your main Exchange server from having to handle things like spam and AV filtering from the outside world and is an asset if you ever come under a severe DOS attack.  I've put in an installation with an Edge server, main email server, 3rd party firewall proxying the Client access connections, and external spam filtering service.  It seems to work well enaough - only time will tell if it proves to be more resilient than a single server setup.  BTW, You do not need an edge server to run MS spam filtering - you can run it on the Hub transport role - there is a setting that will allow you to do that.

IMO you do not need an edge server for 200 mailboxes for performance reasons, but if you want an extra layer seperating the evil doers from your core mail server then its fine.
0
 
LVL 1

Author Comment

by:preshomes
ID: 20315232
Thank you for your comments...I did understand that I can run spam filtering from the Hub.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Suggested Courses
Course of the Month15 days, 8 hours left to enroll

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question