Couple of additional thoughts. You likely have the ports open for client access. That's a pretty tough thing to secure, but you may want to look at using a layer-7 device that understands Microsoft RPC. Alternatively, you may want to consider upgrading to Exchange 2003 and using RPC/HTTPS functionality or OWA to more securely access mail. As for Exchange admin, you should be able to see the dropped packets on your firewall when you try to connect. What interests me about this is whether or not the machine you are using is part of the domain/forest or not. What creds are you logging when you try to administer the ORG? As suggested, the VPN access would be a lot smoother and easier/more likely to be secure than the current proposal. Al -----Original Message----- From: Jason Merrique [mailto:j.merrique@xxxxxxxxxxxxxxx] Sent: Tuesday, February 24, 2004 8:41 AM To: [ExchangeList] Subject: [exchangelist] RE: Port use by exchange Admin http://www.MSExchange.org/ You might want to try using a VPN connection for exchange admin. It's an awful lot more secure than opening up those ports at the firewall. Especially 135! Cheers Jason > -----Original Message----- > From: stef [mailto:stef@xxxxxxxxxxxxxxxx] > Sent: 24 February 2004 13:53 > To: [ExchangeList] > Subject: [exchangelist] Port use by exchange Admin > > http://www.MSExchange.org/ > > Hi > > What are the protocol use by exchange administrator 5.5 ? > I actually have the port 135 4410 4411 open though the firewall. > I can access the server but cannot do any modification on account. > > Thanks for your help > Stef > > ------------------------------------------------------ > List Archives: > http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp > Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > Leading Network Software Directory: http://www.serverfiles.com > No.1 ISA Server Resource Site: http://www.isaserver.org Windows > Security Resource Site: > http://www.windowsecurity.com/ Network Security Library: > http://www.secinf.net/ Windows 2000/NT Fax Solutions: > http://www.ntfaxfaq.com > ------------------------------------------------------ > > ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------
