?
Solved

Single Public IP w/Exchange and Web Servers

Posted on 2014-01-24
3
Medium Priority
?
499 Views
Last Modified: 2014-01-24
I have a small business client that's moving from one office to another.  They're currently using a hosted POP server for mail but we need to move them to an Exchange Server before their move in April.  They only have 1 public IP address now for Internet access out and VPN in -- nothing else.  It's a small environment with a SnapGear Firewall on a /24 LAN segment.  Stupid question time.

Normally, I would assign a dedicated IP address for the Exchange Server but they only have one address now.  They will have more available at the new location.  But before they do, can I just use the single IP address for their MX record, then create WAN->LAN Forwarding rule for ports 25 and 443 to the new Exchange Server?

They are also wanting to move their web site from a hosted service to a new internal web server -- but we're not planning on doing that until after they move.  I suppose even so I could still Forward port 80 on the same single IP address/Firewall to the new internal Web Server, too.

So, if I understand this correctly, is the only real reason to use separate public IP addresses is if you will have the same Port number coming in for multiple purposes with separate servers, like HTTPS?  For example, we have an Exchange Server with OWA and a SharePoint Server that both use HTTPS so they would require separate public IP addresses coming into the single Firewall?
0
Comment
Question by:wchestnut
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 7

Assisted Solution

by:Ned Ramsay
Ned Ramsay earned 1000 total points
ID: 39807562
Yes you can do port forwarding on the WAN > LAN.

So, SMTP port 25 and 443 goes to the mail server but port 80 goes to the new web-server.

You understand correctly!

You can also do DNS binding on servers, so port 80 goes to a web-server but once it hits the webserver if it was www.domain.com it goes to one website but if it was intranet.domain.com it loads a different site on the same server.

I would speak to your ISP and see how much extra it is to go to 3 or 5 publics. It is usually very cheap.
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 1000 total points
ID: 39807565
With HTTPS, you need one IP address per address/server. Therefore unless you put SharePoint and Exchange on the same server (not recommended) then you will need multiple addresses.
Otherwise, what you have outlined will work. Although I wouldn't normally recommend self hosting a web site as the headaches with keeping it secure are best left to professionals. If you do decide to do that, then isolate it as much as possible, not on the domain, own IP subnet etc. I would even firewall it off from the rest of the network.

Simon.
0
 

Author Closing Comment

by:wchestnut
ID: 39807569
Awesome, Thanks, guys!
0

Featured Post

Supports up to 4K resolution!

The VS192 2-Port 4K DisplayPort Splitter is perfect for anyone who needs to send one source of DisplayPort high definition video to two or four DisplayPort displays. The VS192 can split and also expand DisplayPort audio/video signal on two or four DisplayPort monitors.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question