Design ET & HT with ISA 2004

Hi EE,

Has anyone implemented the below design and got it  working without any issue:

Server
ISA 2004/06, Edge Transport & Hub Transport

Exchange Server
Mailbox etc

Further questions:
When you installed the ET and HT together inside the firewall like ISA, do you open all traffic first in the first instance so that ET and HT can communicate to the Mailbox role.
If successful, then allow only outbound and inbound traffic to go through to  ET , HT , Mailbox server?
Putting the ET and HT in the DMZ is not any easy task, what other consideration I have to take to make this design to work succesfully (e.g., ligh weight ad)
Consolidating ET and HT role a good practice?

Appreciate your help.
LVL 7
mcse2007Asked:
Who is Participating?
 
araberuniCommented:
First of all, you can publish Exchange through ISA 2006. You need to amend your design.

MBX, HT, CAS----Stays in internal network
ET----DMZ network

you dont need to open all ports for ET. Only necessary ports will do the trick.

ref:
http://technet.microsoft.com/en-us/library/bb124701.aspx
http://microsoftguru.com.au/2009/11/16/exchange-server-2010-edge-transport-role/
http://technet.microsoft.com/en-us/library/bb124024.aspx

you need to configure reverse proxy for CAS Server http://microsoftguru.com.au/2010/08/08/how-to-configure-reverse-proxy-using-forefront-tmg-2010-step-by-step/

Hope this helps.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.