We help IT Professionals succeed at work.

Exchange 2013 Setup Need some clarification

33 Views
Last Modified: 2017-11-27
Ok so before I ask my questions, I'm going to briefly list how I've got things setup.

I've got 3 servers, all running MS Windows Server 2012 R2 Standard

2 of those servers, lets call them MAIL01 and MAIL02 have Exchange 2013 installed. Both the Mailbox and Client Access roles.

The other server is just the File Share Witness

I've created a DAG and have made MAIL01 and MAIL02 members of the DAG

I have a mailbox database on MAIL01 that I added a copy for on MAIL02

Lets assume I've got the following IP addresses on these

MAIL01 - 1.1.1.1
MAIL02 - 1.1.1.2
DAG - 1.1.1.3

I also have a Barracuda spam device setup lets assume IP 1.1.1.4

I am fully aware of how DAG and maintaining QUORUM works.

I am aware that DAG does not provide high availability to the CAS servers.

What I've done is on my domain controller in DNS, I've added 2 A host entries for mail.company.com pointing to 1.1.1.1 and 1.1.1.2. I implemented this because I don't have a hardware load balancer.

I have static NAT setup on my router for the following ports: 80, 110, 143, 443, 587, 993, 995. These all go to IP 1.1.1.3
I have 2 more ports, 25 and 465 which go to 1.1.1.4 which is the Barracuda. In the Barracuda config, I have it routing all e-mails to 1.1.1.3 which is the DAG.

I have a few questions based on this setup.

1. Is this properly setup for high availability?
2. I'm assuming that in order to provide the same kind of round robin DNS for the CAS server from the outside as I have from the inside, I'd need to have a public IP for each of the CAS servers and add both of those to my external DNS servers. If I do this, which ports would I need to setup static NAT for on my router?
3. Yesterday we had a short power outage which caused MAIL02 to go down. Once this happened, the database on MAIL01 was in a dismounted state and I was unable to mount it again. Things wouldn't start working again until MAIL02 was back online.

Basically what I'm trying to achieve is the following:

Have a single domain mail.company.com
Have multiple exchange servers for high availability so that if one were to go down, the other would still be available.
Continue to be able to use my Barracuda and have it route mails to a single IP address.

Any help with this would be much appreciated.
Comment
Watch Question

Cloud Security Consultant
CERTIFIED EXPERT
Top Expert 2010
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION

Author

Commented:
Understood. Is there any particular load balancer you could recommend. The boss is pretty particular about wanting to have HA without having to make manual changes.

The other part that I'm confused about is how to go about setting up the Barracuda appliance.

The router is forwarding ports 25 and 465 to the Barracuda.

The Barracuda can only route mail to a single IP address.

I am currently routing it to the DAG IP address, this seems to work. Is this the proper way to do it or should I be using a load balancer?


The File Share Witness was still accessible during the outage.
Adam BrownCloud Security Consultant
CERTIFIED EXPERT
Top Expert 2010
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
Delphineous SilverwingGood Ol' Geek
CERTIFIED EXPERT

Commented:
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:

Split:
-- Adam Brown (https:#a42073626)
-- Adam Brown (https:#a42073733)


If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

Delphineous
Experts-Exchange Cleanup Volunteer