Solved

exchange 2007

Posted on 2011-03-15
8
203 Views
Last Modified: 2012-05-11
current setup
one exchange server 2007 (in the backend LAN)
one smtp server (iis 6) on the front end or DMZ
only outgoing email as of right now was needed

new requirement
i now kneed to have a full functioning email system with active sync for devices on the internet
will need to have about 150 users connect to this email system

my question is do i need  to replace my SMTP relay server currently inplace with a exchange front end server, and where will the active sync be installed
0
Comment
Question by:dano992
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
8 Comments
 
LVL 49

Expert Comment

by:Akhater
ID: 35137759
You need to open port 443 directly to you exchange CAS server if you don't like this you need a reverese proxy server like ISA/TMG
0
 

Author Comment

by:dano992
ID: 35138840
do i need to replace the IIS smtp relay server on my DMZ with a front end exchange 2007 server?
0
 
LVL 7

Accepted Solution

by:
mmicha earned 500 total points
ID: 35138850
You will need to open port 443.  Based on your description it sounds like your Exchange server is handling all the roles.

You'll also need/should get a SSL certificate if the server is going to be accessed from the outside.  ActiveSync can't use the self signed certificate that is standard on an Exchange 2007 install.  Some of these changes may require DNS updates as well.

For example, you may want mail.example.com to go to your webmail.  You could then use that same address for ActiveSync.  

Hope that helps...
0
Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

 
LVL 49

Expert Comment

by:Akhater
ID: 35138881
No you don't need to replace your SMTP relay it has nothing to do
0
 
LVL 7

Expert Comment

by:mmicha
ID: 35138905
Dano992,

You don't have to replace it on the DMZ, but you do have to open ports (443) and map your external ip and that port to the internal ip of your Exchange server.

Though, you could install an Edge Transport Role in the DMZ and use it and remove the IIS smtp.
0
 

Author Comment

by:dano992
ID: 35139395
lets see if i understand this correctly
i can use the existing SMTP thta is on my dmz or i can replace it with a edge transport
i should purchase a SSL (mail.mydomain,com) for the active sync and install in on my mailbox server
(same ssl for web mail and active sync)
obviously open port 443 and cretae the approriate DNS records on my name servers
0
 
LVL 49

Expert Comment

by:Akhater
ID: 35139603
perfectly correct
0
 
LVL 7

Expert Comment

by:mmicha
ID: 35139621
Dano992,

Those are the basic steps you need to take.  I'd maybe try it in a lab environment first.  That is how I do everything to make sure I fully understand.  You can skimp on the SSL certificate in a lab and just use a mobile device that supports active sync.  It may kick a warning up that you can usually ignore.
 
You may find the following setup valuable when setting things up and testing:
https://www.testexchangeconnectivity.com/
0

Featured Post

Free Webinar: AWS Backup & DR

Join our upcoming webinar with experts from AWS, CloudBerry Lab, and the Town of Edgartown IT to discuss best practices for simplifying online backup management and cutting costs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques.
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video discusses moving either the default database or any database to a new volume.

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question