jskfan
asked on
CAS and Frond end
If I understdan we need to DNS record on the public DNS for instance:
mycompany.com and legacy.mycompany.com
when a user types mycompany.com on the browser it will be forwarded to our firewall external interface then Natted to CAS role, and if CAS server finds that the client s mailbox is in exchange 2003 it will redirect the client back to the public DNS and point it to legacy.mycomapny.com and the client will take another trip back to our firewall external interface.
Up to this point how does the Firewall/NAT know that this connection needs to go to exchange Front End?
thanks
mycompany.com and legacy.mycompany.com
when a user types mycompany.com on the browser it will be forwarded to our firewall external interface then Natted to CAS role, and if CAS server finds that the client s mailbox is in exchange 2003 it will redirect the client back to the public DNS and point it to legacy.mycomapny.com and the client will take another trip back to our firewall external interface.
Up to this point how does the Firewall/NAT know that this connection needs to go to exchange Front End?
thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
the firewall cannot differentiate that's why he told you you need 2 public IP addresses
mail.domain.com -> IP1 -> Natted to CAS 2010
Legacy.domain.com -> IP2 -> Natted to 2k3 front end
mail.domain.com -> IP1 -> Natted to CAS 2010
Legacy.domain.com -> IP2 -> Natted to 2k3 front end
ASKER
maybe I am not understanding that a firewall/NAT,even with one external physical interface, can receive multiple IP addresses and NAT them to multiple IP addresses.
example:
If you receive IP1 NAT it to CAS server IP address
if you receive IP2 NAT it to FE server IP address
example:
If you receive IP1 NAT it to CAS server IP address
if you receive IP2 NAT it to FE server IP address
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thank you guys
ASKER
OK, there will be 2 DNS recors at the public DNS , one for legacy.mycompany.com and one for mail.mycompany.com.
and you are saying there will be 2 public DNS servers , so:
**how are they configured on the DNS public to point to our firewall/NAT external interface
**how is our firewall/NAT configured to distinguish between the connection that will go to CAS and the connection that will go to FE?
Thanks