Exchange 2010 Toplogy for Infrastructure with multiple AD Sites

I am doing an upgrade for a network that has 8 branch offices.  Four of those offices have Exchange 2003 servers currently; all mail flows into one server and then is routed to the appropriate mailbox.   We are upgrading to Exchange 2010 and I was wondering if anyone had suggestions for the topology to implement.  From what I have been reading it looks like at each of the four locations I will want to install the CAS, Hub Transport, and Mailbox role.  My question is since what would be the best way to set this up so I only have to purchase one SSL cert for OWA.  Should I set up a proxy for the CAS?  Since each location will have mailboxes I am assuming the proxy would then route them to their mailbox.  Is the rest done via connectors as far as email flow - the emails will come into one location and then be dispersed.  Is there a best practice way to do this?  Any suggestions would be grealty appreciated.  Thanks.
LVL 2
4eosAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Praveen BalanSolution ArchitectCommented:
If you do not need High Availability (DAG clustering), I think you really do not have to worry much. Assume that one of your office(main) will publish the OWA for you to the internet(internet facing server).

Ensure that you already have AD sites/subnets created for each office where you plan to install Exchange 2010
Install single server with all roles in each office
Publish the main office server to internet as internet facing CAS server(Or use TMG as reverse proxy).

The email flow will take care by AD site connectors, you do not have to create any extra connectors(except the internet Send Connector). It is not so easy to explain the complete steps :(
CAS to CAS proxy will be taken care by exchange 2010 itself.

When it comes to the SSL, you just need to buy for internet publishing URL including the CAS server names  FQDNs as SAN(Subject Alt Names). Normally many third party CAs offer additional 4 SAN names with one Unified Communications Certificate.

There are many more to look at when designing(including CAS array, DAG etc), but this will help you to start with...

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
4eosAuthor Commented:
Thanks.  I have installed two exchange servers; one configured with the CAS internet facing.  I am having problems finding out how to configure the CAS proxy.   I have OWA enabled on the internet facing CAS.  I have also enabled OWA on the second CAS and configured integrated authentication.  Can someone please point me in the right direction to get this configured?  Thank you.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.