RE: SMTP Gateway on ISA

  • From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
  • To: "[ Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Wed, 27 Oct 2004 07:58:46 -0500

Why isn't your ISA firewall a member of the domain?

What perceived security advantages does this confer viz. the making it a
member of the domain? 

Tom and Deb Shinder's Configuring ISA Server 2004
MVP -- ISA Firewalls

-----Original Message-----
From: Mustafa Cicek [mailto:mbcicek@xxxxxxxxx] 
Sent: Wednesday, October 27, 2004 9:09 AM
To: [ Discussion List]
Subject: [isalist] RE: SMTP Gateway on ISA

Hi Tom!
Thanks for reply.

There is following information in the document "ISA Server 2004/Exchange
Server Deployment Kit: Creating a Secure SMTP Relay on the ISA Server
Firewall using the SMTP Filter and Message Screener" :

"The SMTP service on the ISA Server 2004 firewall is configured to block
anonymous relay. However, the default setting is to allow users to relay
through the SMTP server if they can authenticate. Users with accounts in
the Internal network Active Directory can use their domain credentials
authenticate with the SMTP relay machine because the ISA Server 2004
firewall is a member of the Internal network domain."

But my ISA server is not a member of internal domain. In this case, how
can ISA server know about the existing domain users and mail addresses?
ISA cannot know them, SMTP relay cannot work.

Best Regards

List Archives:
ISA Server Newsletter:
ISA Server FAQ:
Other Internet Software Marketing Sites:
World of Windows Networking:
Leading Network Software Directory:
No.1 Exchange Server Resource Site:
Windows Security Resource Site:
Network Security Library:
Windows 2000/NT Fax Solutions:
You are currently subscribed to this Discussion List as:
To unsubscribe visit
Report abuse to listadmin@xxxxxxxxxxxxx

Other related posts: