Re: Exchange2K/DMZ

From: Mike Brentlinger (mdbrentlinger@hotmail.com)
Date: 07/11/02

• Previous message: Brian Arkills: "RE: Automatically updating File Permission through GP's on a stan d alone"
• Maybe in reply to: Nicole Tutt: "Exchange2K/DMZ"
• Next in thread: Seth Mitchell: "RE: Exchange2K/DMZ"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Mike Brentlinger" <mdbrentlinger@hotmail.com>
To: Nicolet@meddata.com, focus-ms@securityfocus.com
Date: Thu, 11 Jul 2002 10:38:41 -0400

I use a old junky desktop system with linux and postfix on it to accept mail
from the world (from the dmz) then relay it to an exchange server (on the
internal net).

As a plus the postfix system filters lots of nasty attachments, and spam. se
the following for more info..

http://www.postfix.org/
http://www.advosys.ca/papers/printable/postfix-filtering.pdf

as for outlook web access id follow ms guidelines... and search the mskb,
see the following for starters.
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q280132

----Original Message Follows----
From: "Nicole Tutt" <Nicolet@meddata.com>
To: <focus-ms@securityfocus.com>
Subject: Exchange2K/DMZ
Date: Wed, 10 Jul 2002 15:45:57 -0700

The LAN Administrator set up an Exchange server and placed it inside the
firewall - opening ports for SSL and SMTP to the Exchange box from the
outside world. I want to move the Exchange services to the DMZ. I'm not
that familiar with Exchange 2k specifically but am used to being able to
split out services from mail servers (IE. put WebAccess and SMTP gateways)
and place vulnerable items in the DMZ or if not place the whole Exchange
server in the DMZ. The LAN admin is concerned because the Exchange server
has to see the domain controller on the inside net. How have others handled
this setup?

Thanks in advance
Nicole

_________________________________________________________________
MSN Photos is the easiest way to share and print your photos:
http://photos.msn.com/support/worldwide.aspx

---

• Previous message: Brian Arkills: "RE: Automatically updating File Permission through GP's on a stan d alone"
• Maybe in reply to: Nicole Tutt: "Exchange2K/DMZ"
• Next in thread: Seth Mitchell: "RE: Exchange2K/DMZ"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages RE: Webserver on a DMZ still needed? ... exchange server in a DMZis in the real ... Webserver on a DMZ still needed? ... roles for performance and security but again, ... (Security-Basics) RE: AD in the DMZ . . . OK? ... We put Exchange in the DMZ for OWA. ... Exchange server and the Internet. ... Attend a course taught by an expert instructor with years of ... (Security-Basics) Re: Exchange2003 in der DMZ ... es ist eine eigene Domäne in der DMZ ... Outlook Zugriff auf den Exchange Server haben? ... (microsoft.public.de.exchange) Re: Exchange2003 in der DMZ ... es ist eine eigene Domäne in der DMZ ... Outlook Zugriff auf den Exchange Server haben? ... (microsoft.public.de.exchange) Re: New to exchange - Mail relay ... >> I create users on the postfix server ... >> minimal around $50 a year for one exchange. ... My network is 192.168.1.0/24 and my DMZ is 192.168.2.0/24. ... If I bring the postfix machine into the LAN side and give it an IP in the ... (microsoft.public.exchange.admin)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-ms  > 2002-07