Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Exchange 2010: ActiveSync Design

Posted on 2012-04-10
2
Medium Priority
?
835 Views
Last Modified: 2013-12-27
We're considering introducing Exchange 2010 ActiveSync into our environment.  For one of the domains, we have 2 Exchange 2010 multirole servers running CAS, HUB, and Mailbox.  We also run F5 load balancers.  

For security reasons (and not performance), we're considering adding 2 dedicated CAS servers for ActiveSync.  We would have 2 for redundancy. They would sit on the internal network.  The F5 would sit on the DMZ and act as a reverse proxy.  

My question: Is having dedicated CAS servers for ActiveSync more secure than running ActiveSync off the multirole servers?  It seems like dedicated CAS servers would have a smaller attack surface.
0
Comment
Question by:bsohn417
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Accepted Solution

by:
Don S. earned 1000 total points
ID: 37829881
Not really.  The attack surface comes from the CAS role.  I don't think the surface changes weather it is on the mailbox server or not.  That said, for performance and management/backup-retore reasons it is generally best practice to seperate the Mailbox role from the CAS role.
0
 
LVL 9

Assisted Solution

by:ash007
ash007 earned 1000 total points
ID: 37831832
It wont matter if its multirole or single role
0

Featured Post

Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New style of hardware planning for Microsoft Exchange server.
This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question