Solved

Internally hosted mail server with anti spam firewall

Posted on 2013-06-20
3
512 Views
Last Modified: 2013-06-22
Hi,
This is probably pretty basic stuff, but I wanted to be sure I'm doing this correctly.

I have SBS 2011 with exchange 2010.  I also have a barracuda anti-spam firewall, what I need to do is be sure that I have the public DNS/MX records setup correctly.  Plus the firewall and the Barracuda.  I would like to have my public presence look like mail.MYDomain.com, have the mail hit the barracuda first then have the barracuda send the mail to the exchange server.  

So.....
I'm using ZoneEdit to manage my DNS, they also provide my backup MX in case we are down.  What should I add in the dns records here?  What is the proper configuration of the firewall.  

Thanks very much.
0
Comment
Question by:mcioffi209
  • 2
3 Comments
 
LVL 27

Accepted Solution

by:
Steve earned 500 total points
ID: 39266870
External dns:

Set up an 'a' record pointing to your public ip address.

Eg mail.company.com 91.234.12.32

Also set an mx record pointing to the a record and assign it a value/cost/priority

Eg mx mail.company.com  5

Firewall:
The only things you need adding to the firewall for mail is port 2 (smtp) 5 & 443 (webmail/https) to forward to the barracudas internal ip.
Also ensure outgoing port 25 is open for the server and/barracuda as required.
0
 
LVL 27

Expert Comment

by:Steve
ID: 39266871
Edit: port 443 should point to the exchange box, not the barracuda!
0
 

Author Closing Comment

by:mcioffi209
ID: 39267954
just what I needed.  Thank you.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the event you manage a Small Business Server 2003, and you are audited for PCI compliance, there are several changes you must make in order to pass the audit. I can take no credit for discovering any of these fixes or workarounds, but there is no…
If you are a user of the discontinued Microsoft Office Accounting 2008 (MSOA) and have to move to a new computer running Windows 8, you will be unhappy to discover that it won't install.  In particular, Microsoft SQL Server 2005 Express Edition (SSE…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

791 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question