exchange 2013 EOP
do I have to use or is it highly recommend using EOP for my exchange on-premises email filter? I am having way too many issues with EOP and my firewall connection socket issues. delayed deliveries to unable to connect to eop. thnking using Baracuddaspam filter. suggestions?
Who is Participating?
Experts Exchange Solution brought to you by
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
i have used to have a client that have a on-premises appliance and their internet is over 500GB per months because they attract 10 millions spam every month (really crazy numbers).
I put them to a cloud filter (symantec cloud, mailguard.com.au or etc), their internet bill goes down, and they pay a fees and they don't need to maintain the on-premises appliance.
For your issue, i will work with your firewall team and microsoft for a better result. Usually, is your firewall causing the issues (i.e. you could have the same issue when receving from internet email, the issue are not visible since it is from Internet, you won't have visilibilty until you receive such email)
yes, limjianan put an additional aspect into the decision path.
Filtered traffic never reaches your systems, so you save bandwidth.
Also we have to add, that malware protection is implemented into exchange, but virus protection is a separate topic and connected to additional cost.
The hosted solution is easy to calculate. You have monthly costs for the service and you can save some bandwidth.
An on premise solution has cost for the additional virus protection (as appliance or software gateway)and the maintenance of the system.
Nevertheless the more important question for me is always, how you value the fact, that mail traffic passes an external third party system (in case of EOP). Just a question of confidence.
Experts Exchange Solution brought to you by
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
Start your 7-day free trialIt's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
From novice to tech pro — start learning today.
Experts Exchange Solution brought to you by
Your question is more to use an online service vs. offline tools / functionality.....
The EOP uses a cloud based gateway, that means there should not be any change in your local environment...
The flow is, that a mail is first routed to the cloud gateway and from there to your on Premise Exchange server.
The management happens directly on the cloud server...
The advantage: You do not need to install any software nor to take care of the updates and mechanism of this service. Also there is no additional traffic, mails are just rerouted.
The disadvantage is, that an external service provider is between the sender and recipient, and this may result in some delays, as the mail goes first to the EOP provider, is scanned there and then routed to you....
Also a question of confidence...
Beside Microsoft, you find a lot of other service provider working in a similar way.
The second option is to use the built in functionality of exchange. And Exchange Edge in a DMZ can do the job before your internal exchange is touched. Additionally you need a virus protection solution beside Edge. Configuration needs some knowledge about PowerShell, for most of the functionality there is no user interface.
There are also other on premise E-Mail protection solutions out. Either as a software on a server inside the DMZ, which acts as SMTP gateway with virus scan and spam protection and a more friendly user interface, or you can use an appliance what is doing the same.
Microsoft EOP is also working like an appliance, this "appliance" is just located on MS servers.