How to add a Sonicwall Email Security Appliance in front of an all-in-one exchange 2010 server.

Exchange 2010. I have an all-in-one Exchange server handling all roles. I want to put a Email security appliance in front of it, listening at port 25.

Current:
SW Firewall(192.168.1.1)
Exchange Nat-ted by policy (192.168.1.10) port 25  
default receive connectors: client FQDN exchange.mydomainmail.com port 587
                                                 default Exchange exchange.mydomainmail.com port 25

Proposed:
SW Firewall(192.168.1.1)
SW ES3300 (192.168.1.9)
Exchange Nat-ted by policy (192.168.1.10)

-do i remove this default receive connectors and make new one for port 25 pointing to the FQDN ES3300.mydomainmail.com?
- or do i add just another receive connector ported to 25?

i dont have a test environment to try it out on so i wanted to ask before i make the moves


thank you!
LVL 2
cfgtechsAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

J SpoorTMECommented:
1) you configure the Email Security with an inbound path, pointing to your exchange & leave the exhange intact
2) you reconfigure the NAT policy with the Email Securities IP instead of the Exchange IP

Optionally you can also use the Email Security to scan outbound traffic, inthat case
3) you configure an outbound path on the Email Security with soruce IP the exchange
4) you re-configure, or add one with higher priority, the send connector to use smarthosting and pint to the Email Security

very simple :)
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
cfgtechsAuthor Commented:
thanks, i opened a case with SW support to get the details of your steps
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.