Exchange 2010 DNS & MX Configuration

Hello, everyone  
Need detail help configuring my Exchange 2010 server.  The areas I'm stuck at are DNS & MX configuration.  Questions that I  have are listed below.  

 Here is my Configuration:  Internal AD domain name is Company.Mycompany.com (child domain unregistered public namespace), but Mycompany.com is a public registered domain namespace.  Note: AD is installed only on the child domain.

Exchange environment consist of  4 servers ; 1 CAS (Cas1.company.mycompany.com), 1 HT(HT1.company.mycompany.com), 2 mailbox srvs (mb1.company.mycompany.com, mb2.company.mycompany.com).

Question that needs to be answered are

On which servers do I insert my static public ip address on?

On Which dns servers do I insert my mx & host record?  Example I have a public DNS domain on godaddy, and using a unregistered child domain but registered parent domain, on my internal network (company.mycompany.com)?

What is the correct syntax to create MX & host records ?

How will I setup my OWA, for internal & external user access?

Optional configuration; in the future how to setup my Exchange Edge Server
JCJohnson76Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Will SzymkowskiSenior Solution ArchitectCommented:
On which servers do I insert my static public ip address on?
You have to NAT your public IP to your CAS servers internal IP. If you have multiple CAS servers in an Array with a load balancer then you need to NAT the public IP to the VIP being used for the CAS servers. In your case you only have one CAS so you need to NAT to that server.

On Which dns servers do I insert my mx & host record?
You would create an MX record under your mycompany.com
So it would be mail.mycompany.com and you would use that Public IP associated with the MX record to be NAT'ed to your CAS server internally.

You will need to also setup your reverse IP for your MX record as well. You will need to contact your ISP for them to setup your external IP to your MX record (PTR record).

How will I setup my OWA, for internal & external user access?
I personally like to simplify the namespace and keep internal the same as external. To accomplish this you need to setup split dns (if you haven't already). Once you have split dns setup change your internal URL to match your external ones.

I have created a HowTo for this exact procedure.
http://www.wsit.ca/how-tos/exchange-server-2/configure-split-dns-and-exchange-2013-virtual-directories/

Will.
JCJohnson76Author Commented:
Thanks for your quick response;  I will try this and get back later to you on the results.  Also I was told that split dns could be a nightmare to administer.

Also is it mandatory that I use nat on the cas server; because I purchase 5 static ip addresses?  Or will this be safer way to go in reference to security.   Also what if I want to use my Exchange Edge Server in the future.  Where does the static ip address goes?  For example Edge Server will be in the DMZ.  Do it need to have both 2 nics one for internal ip address and another for the public ip address?
JCJohnson76Author Commented:
I have a question to your comment ?

You would create an MX record under your mycompany.com
 So it would be mail.mycompany.com and you would use that Public IP associated with the MX record to be NAT'ed to your CAS server internally.

Do you mean setup the mx record & A record on my godaddy acct, like this.

Do you mean  mail.mycompany.com will be my A record,  which point to my public ip address

And add MX record will be @  which will point to mail.mycompany.com

Can you clarify if this is correct

Thanks
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

JCJohnson76Author Commented:
Next question you requested that I setup the mx record in mycompany.com; which I believe is correct.  But I thought also I'm suppose to setup a mx record on my internal AD Domain company.mycompany.com.  

If that be true, what is the correct way to do it.

Is this the correct name syntax to create the mx record on the internal network?

Thanks
Will SzymkowskiSenior Solution ArchitectCommented:
Split DNS needs to be managed internally and externally so if you have hundreds of records on the internet then you need to manage this in two places, so unless you have hundreds of records it will be fine to setup split dns.


You should already have an A (host) record for mycompany.com and you then just need to create an MX record for mail.mycomapny.com with the external IP you will be using. You then need to contact your ISP and ask them to setup a reverse (PTR) record for mail.mycompany.com.

You would NAT that IP to your internal CAS server. You can lock this down via port 25 only. If you plan on putting in an Edge server in your DNZ which would be better, you then point mail.mycompany.com to the Edge server and create an Edge Subscription to your internal Exchange environment (CAS server) and mail will be forwarded from the Edge server to internal CAS.

Will.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
JCJohnson76Author Commented:
Getting kind of confuse now; because we are speaking of two different platforms; split dns & public dns

What I did so far; just now was setup split dns on my internal AD Domain.
Added a primary zone called mycompany.com

Now are you speaking that I add the mx & A record to the new primary zone that I just setup?

Or was you speaking about about the public dns mycompany.com, because the mx & a record was previously created on the public domain.
JCJohnson76Author Commented:
Grammar correction
 What I did so far; just now setup split dns on my internal AD Domain.
Will SzymkowskiSenior Solution ArchitectCommented:
Public DNS is/should already be in place. You then simply add the zone on your internal DNS servers to match what you use externally. You then add mail.mycompany.com and a cname record for autodiscover.mycompany.com.

That is for Exchange specifically. If you have other external subdomains for this domain like a website then you need to add all of those to the internal zone as well.

My HowTo only covers the Exchange entries you need to configure. You will still need to add all of your other websites etc.

Will.
JCJohnson76Author Commented:
Thanks for all your help; and understand now
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.