Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 394
  • Last Modified:

Design ET & HT with ISA 2004

Hi EE,

Has anyone implemented the below design and got it  working without any issue:

Server
ISA 2004/06, Edge Transport & Hub Transport

Exchange Server
Mailbox etc

Further questions:
When you installed the ET and HT together inside the firewall like ISA, do you open all traffic first in the first instance so that ET and HT can communicate to the Mailbox role.
If successful, then allow only outbound and inbound traffic to go through to  ET , HT , Mailbox server?
Putting the ET and HT in the DMZ is not any easy task, what other consideration I have to take to make this design to work succesfully (e.g., ligh weight ad)
Consolidating ET and HT role a good practice?

Appreciate your help.
0
mcse2007
Asked:
mcse2007
1 Solution
 
araberuniCommented:
First of all, you can publish Exchange through ISA 2006. You need to amend your design.

MBX, HT, CAS----Stays in internal network
ET----DMZ network

you dont need to open all ports for ET. Only necessary ports will do the trick.

ref:
http://technet.microsoft.com/en-us/library/bb124701.aspx
http://microsoftguru.com.au/2009/11/16/exchange-server-2010-edge-transport-role/
http://technet.microsoft.com/en-us/library/bb124024.aspx

you need to configure reverse proxy for CAS Server http://microsoftguru.com.au/2010/08/08/how-to-configure-reverse-proxy-using-forefront-tmg-2010-step-by-step/

Hope this helps.
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now