Re: Outlook web access

From: David Glosser (david_glosser@yahoo.com)
Date: 03/05/03

  • Next message: Dr. S. A. Vetha Manickam: "Re: 5 security questions" 
    From: "David Glosser" <david_glosser@yahoo.com>
To: <security-basics@securityfocus.com>
Date: Wed, 5 Mar 2003 07:57:51 -0500

    We use apache in our DMZ configured as a reverse proxy to talk to an Inotes
    server (Inotes is lotus' equivalent of OWA).
    Same principle. We also required users to authenticate through our firewall
    via web authentication (checkpoint fw1)
    before accessing the reverse proxy server. This prevented the reverse proxy
    server from having to deal with nimda,
    code red, etc. ( I don't know if this option is available with other
    firewalls).
    HTH
    David Glosser

    ----- Original Message -----
    From: "Jennifer Fountain" <JFountain@rbinc.com>
    To: "Marc Suttle" <marc.suttle@anidirect.com>;
    <security-basics@securityfocus.com>
    Sent: Friday, February 28, 2003 3:28 PM
    Subject: RE: Outlook web access

    I don't know of any utility that you could use to do this; however, maybe
    you could use a reverse proxy. ISA (although it is $1000 or so for the
    license. There are open source proxies but I haven't tested them) works
    well for us. You could configure additional security on the ISA server or
    your firewall.

    HTH
    Thank you
    Jenn Fountain

    -----Original Message-----
    From: Marc Suttle [mailto:marc.suttle@anidirect.com]
    Sent: Thursday, February 27, 2003 1:21 PM
    To: security-basics@securityfocus.com
    Subject: Outlook web access

    Hello list,
    Real quick question. I was wondering if there are any open source
    utilities that will install to apache that will allow outlook web access
    from the dmz to an internal exchange server.

    My setup is this:

    internet-------fw---------internal lan--------exchange 5.5 mail server
                    -
                    -
                    -dmz------apache web server-------

    I would like to have some kind of login for the users at the apache level on
    the dmz that would interact with the exchange server on the internal
    network. Any input if this was clear is appreciated. Basically I do not
    want to allow any communications from the outside to the internal network.

    Thanks,

    Marc

  • Next message: Dr. S. A. Vetha Manickam: "Re: 5 security questions"

    Relevant Pages

    • Re: A Good Reverse Proxy Product
      ... How about an SSL VPN device... ... Still place the OWA box in the DMZ, but don't allow direct access to it, only through the VPN... ... A Good Reverse Proxy Product ... We have a new MS Exchange server and the administrator wants to provide remote ...
      (Security-Basics)
    • Re: IIS 6 Questions
      ... Either you need a reverse proxy, for example OctaGate, Apache (apache can ... want the webserver part of it), ... Kristofer Gafvert - IIS MVP ...
      (microsoft.public.inetserver.iis)
    • Re: Securing a webserver through reverse proxy?
      ... use it to protect another server as it had some problems in the past. ... Securing a webserver through reverse proxy? ... Apache has a proxy module, that makes apache work as a proxy for ...
      (Security-Basics)
    • Re: need some documentation
      ... With a reverse proxy you would get it to rewrite any URLs you need. ... > We basically have set up another AD domain for Sharepoint External ... > again and that completely destroys my purpose of having a server in the dmz. ...
      (microsoft.public.sharepoint.portalserver)
    • Accessing Web Folders via Apache 1.3.31 Reverse Proxy
      ... We have Apache 1.3.31 setup as a Reverse Proxy to another server. ... Does anyone know what I have to do to access Web Folders via an Apache ...
      (comp.infosystems.www.servers.unix)