Re: [fw-wiz] Exchange & Blackberry

From: Greg Skouby (gskouby_at_sitesnow.com)
Date: 06/21/04

  • Next message: Christopher Lee: "RE: [fw-wiz] Re: Firewalls Compared" 
    To: Geoff Bleau <geoffb@bellsouth.net>
Date: Mon, 21 Jun 2004 14:08:53 -0400

    Hi Geoff,

    Here is my suggestion. The others should feel free to comment/correct.

    I would have *all* of your mail going through a BSD/Linux box en route to an exchange server.
    I am not conformatable with having an Internet facing exchange box. Call me paranoid,
    or call me safe. You could place both servers on the DMZ, but still have no ports
    open to the exchange box. The blackberry installation should not require any ports
    to be open for the incoming traffic. I can't recall the open outgoing ports that
    are needed for the blackberry data service.

    We were very happy with the Blackberry Enterprise software but if they lose
    in their current litigation it might render your client's investment worthless.

    --Greg
     

     

    On Mon, Jun 21, 2004 at 12:37:52PM -0400, Geoff Bleau wrote:
    > Hi,
    >
    > I'm looking for suggestions on 'best-policy' for implementing
    > a MS Exchange Server 2003 and Blackberry Server installation
    > at a client site.
    >
    > Will be using a Sonicwall 2040 ( which has a DMZ port )
    >
    > 1) Where should the servers be placed ( LAN or DMZ ) ??
    > 2) What security issues will this 'open up' ??
    > 3) Any other caveats ??
    >
    > Thanks,
    >
    > Geoff Bleau
    >
    >
    > --
    > " I like my women like I
    > like my coffee......
    > bitter and murky. "
    > GC
    >
    > Geoff Bleau - geoffb@bellsouth.net
    > Florida Software & Data Systems http://www.flsoft.com
    >
    >
    > _______________________________________________
    > firewall-wizards mailing list
    > firewall-wizards@honor.icsalabs.com
    > http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

  • Next message: Christopher Lee: "RE: [fw-wiz] Re: Firewalls Compared"

    Relevant Pages

    • Re: Blackberry
      ... Neither the Blackberry Enterprise Server nor the Blackberry Desktop (can be ... Exchange server. ... What Ports would I have to forward in my router? ...
      (microsoft.public.exchange.setup)
    • Re: Open Ports required for RFC over HTTP
      ... We are using a cert issued by Geotrust. ... issued our cert, it was issued for the Cname, and worked fine. ... I asked them what ports they block, ... we can successfully connect to the exchange server. ...
      (microsoft.public.exchange.setup)
    • Re: Exchange connectivity through Firewall
      ... Considering the connections from Org A to Org B network will always ... will firewall forward rules to a target ... Exchange server will only see the external interface of the firewall as the ... I understand that Exchange 2000 services can be hard coded to certain ports ...
      (microsoft.public.exchange2000.connectivity)
    • RE: Mail connectors and pdf size limit?
      ... attachmenys mentioned in the second document were also disabled for incoming. ... and added the ports into the reservered ports restarting the server ... If you are using SBS 2003 server, please rerun the CEICW wizard which will specify e-mail attachments to be removed from incoming Internet e-mail. ... it should not be Exchange server issue but more related to your ISP or installed firewall or anti-spam software etc. ...
      (microsoft.public.windows.server.sbs)
    • RE: [fw-wiz] NTLM authentication from DMZ
      ... > Of Frank Knobbe ... that the OWA box needs to be in the same domain as the Exchange server ... Are you saying that you can block nb-session and have everything still ... different ports altogether. ...
      (Firewall-Wizards)