Link to home
Avatar of OmnitraxIT
OmnitraxITFlag for United States of America

asked on

Cisco 5500 ASA instead of ISA for Exchange 2007

I am upgrading my Exchange environment to 2007.  There is not a lot of documentation out there for setting up a reverse proxy for Exchange 2007 that is not an ISA server.  I have a Cisco ASA 5510 and was wondering if I can publish OWA using it instead of installing an ISA server.  Also if it is possible how I would go about implementing it.  Any imput is greadtly appreciated.  Thank you.

Gabe
Avatar of Pugglewuggle
Pugglewuggle
Flag of United States of America image

Hi There,

Basically all you do is setup the same firewall rules in the ASA. Generally, this means opening port 443 for OWA in the ACL and forwarding port 443 to the Exchange Server. That's pretty much it. It's much less complex than ISA. I'd rather use an ASA for this any day than ISA, good choice, it'll serve you well.
SOLUTION
Avatar of Keith Alabaster
Keith Alabaster
Flag of United Kingdom of Great Britain and Northern Ireland image

Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
No problem - and it wasn't a comment to try and knock the ASA - haven't used them much but when I have they have been great. Only chimed in because the original question asked requested a reverse proxy - which is why ISA or FTMG is one of the more obvious - and documented - choices.
Yes sir. Yeah, I don't bother with reverse proxy most of the time. I just bring the traffic straight to the CAS server or an edge server and let the firewall do it's job. It is good at it after all. :-)
Avatar of OmnitraxIT

ASKER

That is what I was looking for.   I was hoping there was a module or something you could add for that ability.  Thank you.