Solved

how to configure frontend/backend servers tofor mail delivery

Posted on 2008-10-12
5
1,064 Views
Last Modified: 2012-05-05
I need to properly configure mail flow between frontend and backend servers in exchange 2003. The topology will be:

2 frontend servers behind the perimeter firewall
2 backend servers clustered behind the perimeter firewall.

There will be a smtp gateway/spam/virus filtering appliance to send outbound mail through.
Should the frontend and backend servers be configured as bridgehead servers on the opposite sides of a routing group?  The frontend and backend servers will all be on the same subnet. Should a smpt connectors on the backend servers be configured as smarthosts pointing to the smtp gateway?
What about inbound mail flow from the internet?

What would be a recommended configuration?

thanks
0
Comment
Question by:bignewf
  • 3
  • 2
5 Comments
 
LVL 33

Accepted Solution

by:
Exchange_Geek earned 250 total points
Comment Utility
Should the frontend and backend servers be configured as bridgehead servers on the opposite sides of a routing group?  

Even if they are part of the same Routing group - it wouldn't matter much. Works fine.

The frontend and backend servers will all be on the same subnet. Should a smpt connectors on the backend servers be configured as smarthosts pointing to the smtp gateway?

Practically speaking SMTP Connector should be configured on F.E server as bridgehead servers with smart host configured as the next hop (in your case the firewall / smtp gateway)

What about inbound mail flow from the internet?

Well, have your ISP point a MX record to the external ip of your smtp gateway / firewall. Have rules configured to forward the traffic over port 25 to your F.E servers.

Ref Link:
Front-End and Back-End Server Topology Guide for Exchange Server 2003 and Exchange 2000 Server
http://technet.microsoft.com/en-us/library/aa996980.aspx

0
 
LVL 15

Author Comment

by:bignewf
Comment Utility
This is a good solution, but the BE servers will not require any connectors (i.e routing group connectors) to the FE servers?  Will the BE servers require any connectors between them  (there will be two) with smarthosts configured?

Once a request for a particular mailbox reaches the FE server, then it will then the user mailboxr mailbox using DSA proxy requests to a global catalogue server in active directory, authenticate the user and then the mail will traverse the smtp gateway, so a connector is not needed for this reason on a BE server?


thanks
0
 
LVL 15

Author Comment

by:bignewf
Comment Utility
This is a good solution, but the BE servers will not require any connectors (i.e routing group connectors) to the FE servers?  Will the BE servers require any connectors between them  (there will be two) with smarthosts configured?

Once a request for a particular mailbox reaches the FE server, then it will then the user mailboxr mailbox using DSA proxy requests to a global catalogue server in active directory, authenticate the user and then the mail will traverse the smtp gateway, so a connector is not needed for this reason on a BE server?

I am only trying to clarify that the topology of the BE servers in this scenario


thanks  for your great help
0
 
LVL 33

Expert Comment

by:Exchange_Geek
Comment Utility
but the BE servers will not require any connectors (i.e routing group connectors) to the FE servers?

Mails do flow only from one connector - so as long as all the servers are part of the same routing group - no connector require to connect any server - they all are part of the family using one connector (which is owned by big daddy FE serveR)

Will the BE servers require any connectors between them  (there will be two) with smarthosts
configured?

This configuration has to be done on FE server - BE server can sit quietly.

Once a request for a particular mailbox reaches the FE server, then it will then the user mailboxr mailbox using DSA proxy requests to a global catalogue server in active directory, authenticate the user and then the mail will traverse the smtp gateway, so a connector is not needed for this reason on a BE server?

Why getting into the nitty-gritty of the environment - it is simple mail flows out from any box who has the SMTP connector configured. When a email is sent from the BE server - it has the configuration pre-loaded into its own Metadata (thanks to DS2MB). Using this information the mail is then forwarded to FE server (which has the SMTP Connector configured). FE server will simply work on the port 25 to forward the query across to the smart host.

0
 
LVL 15

Author Comment

by:bignewf
Comment Utility
thanks for your great help. tried it and it works fine with the smtp connector on the FE server using the ip address of the smtp gateway as a smarthost
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now