RE: E2k -in the DMZ segment !

• From: "Thomas W Shinder" <tshinder@xxxxxxxxxxxxxxxxxx>
• To: "[ExchangeList]" <exchangelist@xxxxxxxxxxxxx>
• Date: Sun, 28 Sep 2003 12:33:59 -0500

Hi Brian,
 
I believe that MS is changing these recommendations, because you should
never extend the internal network security partition into the DMZ.
There's no point to having a DMZ if you allow intradomain communications
through the firewall.
 
HTH,
Tom
 
Thomas W Shinder 
www.isaserver.org/shinder 
ISA Server and Beyond: http://tinyurl.com/1jq1 
Configuring ISA Server: http://tinyurl.com/1llp 
  _____  

From: Brian Parker [mailto:bparker@xxxxxxxxxxxxx] 
Sent: Sunday, September 28, 2003 11:23 AM
To: [ExchangeList]
Subject: [exchangelist] RE: E2k -in the DMZ segment !
 
http://www.MSExchange.org/
Hi Andrey
 
You need to allow traffic for Port 139 RPC and (I think) LDAP 389
between DMZ and GC  - see Micrsosoft article on Front End/Back End
configuration.
 
HTH
 
Regards 
Brian Parker 
Senior Computing Officer 
 

Other related posts:

• » E2k -in the DMZ segment !
• » E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !
• » RE: E2k -in the DMZ segment !

1. Home
2. exchangelist
3. Archive
4. 09-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---