Re: OWA without ISA server
- From: "adrian bolzan" <abolzan@xxxxxxxxxxxxxxxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 9 Jun 2005 09:38:37 +1000
Hi thekevin,
I must admit, i have not read as much on the ISAserver.org site as I
should and will do so at teh first opportunity.
Thanks for your reply,
Adrian
________________________________
From: thekevin@xxxxxxxxxxxx [mailto:thekevin@xxxxxxxxxxxx]
Sent: Wednesday, 8 June 2005 11:50 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: OWA without ISA server
http://www.ISAserver.org
The Doc has written serveral articles comparing such configs
weighing the pro's and con's of each.Some very good reading for anyone
IT.
thekevin
----- Original Message -----
From: adrian bolzan
<mailto:abolzan@xxxxxxxxxxxxxxxxxxxxxxxxx>
To: [ISAserver.org Discussion List]
<mailto:isalist@xxxxxxxxxxxxx>
Sent: Tuesday, June 07, 2005 7:06 PM
Subject: [isalist] OWA without ISA server
http://www.ISAserver.org
Hi all,
Recently posted to the Exchange list but thought this
forum may be appropriate, too.
We currently run Exchange 2003 with FE and BE servers.
The FE server is in a DMZ, whilst the BE servers are
located on the Internal/protected network.
The FE servers are only accessed by staff on our WAN and
selected staff via the internet (those with permanent IP addresses).
We do not use ISA server, although it is on the horizon,
rather using a firewall appliance that performs stateful packet
inspection, DOS, etc.
Currently, the FE server is part of our domain, and i
have opened up all ports between the FE server and the BE server and
DC's in the protected network, whilst restricting access from the
internet to those with permanent IP addresses on the ADSL/cable
connections. If I remember correctly, I can configure the communication
between the FE server and the DC's to be over a single port, which
requires registry hacks, although this has not been implemented.
What are your thoughts, with respect to security, on
allowing general HTTPS access to the FE server for OWA from the internet
without ISA server and with the scenario i have painted above?
cheers,
adrian
------------------------------------------------------
List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking:
http://www.windowsnetworking.com
Leading Network Software Directory:
http://www.serverfiles.com
No.1 Exchange Server Resource Site:
http://www.msexchange.org
Windows Security Resource Site:
http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org
Discussion List as: thekevin@xxxxxxxxxxxx
To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
============================================================
IMPORTANT - This email and any attachments is confidential.
If received in error, please contact the sender and delete
all copies of this email. Please note that any use,
dissemination, further distribution or reproduction of this
message in any form is strictly prohibited. Before opening or
using attachments, check them for viruses and defects.
Regardless of any loss, damage or consequence, whether caused
by the negligence of the sender or not, resulting directly or
indirectly from the use of any attached files, our liability
is limited to resupplying any affected attachments.
Any representations or opinions expressed in this email are
those of the individual sender, and not necessarily those
of the Capital Transport Services.
============================================================
------------------------------------------------------
List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion
List as: abolzan@xxxxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
============================================================
IMPORTANT - This email and any attachments is confidential.
If received in error, please contact the sender and delete
all copies of this email. Please note that any use,
dissemination, further distribution or reproduction of this
message in any form is strictly prohibited. Before opening or
using attachments, check them for viruses and defects.
Regardless of any loss, damage or consequence, whether caused
by the negligence of the sender or not, resulting directly or
indirectly from the use of any attached files, our liability
is limited to resupplying any affected attachments.
Any representations or opinions expressed in this email are
those of the individual sender, and not necessarily those
of the Capital Transport Services.
============================================================
Other related posts:
