Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion GroupsWindows Server 2003Windows 2000Windows NTSmall Business ServerVirtual ServerExchange ServerIISHost Integration ServerISA ServerSMSWSUSMOMWindows Media ServerSecurityCertification
Related Topics
SQL ServerMS WindowsMS OfficePC HardwareMore Topics ...
Windows Server Forum / Exchange Server / Design / March 2008

Tip: Looking for answers? Try searching our database.

Exchange Server with a Web Server Security Question

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Tim - 26 Mar 2008 02:23 GMT
We are a small co and I was wanting opinions on installing a new Exchange
Server on the same hardware as our Web Server.  Mail Server and Web Server on
the same box?
Web Server is in a DMZ so is there anything wrong with this?

I hate to buy another server if I can use utilize what we have now. else
what is a good argument to add a seperate server just for mail?
Thanks in Advance
Tim
Reply to this Message
Bharat Suneja [MVP] - 26 Mar 2008 02:48 GMT
- Security is a good argument, imo. In general, you don't want to locate
your Exchange Server in perimeter networks.
- Exchange Servers require access to Domain Controllers.
- Outlook client communication with Exchange server requires RPC
connectivity. You can lock this down to HTTPS by using RPC over HTTP(S).

Signature

Bharat Suneja
MVP - Exchange
www.zenprise.com
NEW blog location:
exchangepedia.com/blog
----------------------------

> We are a small co and I was wanting opinions on installing a new Exchange
> Server on the same hardware as our Web Server.  Mail Server and Web Server
[quoted text clipped - 6 lines]
> Thanks in Advance
> Tim
Reply to this Message
Martin Blackstone - 26 Mar 2008 02:53 GMT
You have major security risks here.
Just the holes you need to punch from the LAN to the DMZ for AD to work are
enough to invite trouble.

Separate server on the LAN.

> We are a small co and I was wanting opinions on installing a new Exchange
> Server on the same hardware as our Web Server.  Mail Server and Web Server
[quoted text clipped - 6 lines]
> Thanks in Advance
> Tim
Reply to this Message
Andrew Sword [MVP] - 27 Mar 2008 10:47 GMT
As the others have mentioned separation is required for security. Also it
depends on how much load the server is under with everything combined.

Here's a link on how to set things up for a single 2003 server.

http://www.msexchange.org/tutorials/Implementing-RPC-over-HTTPS-single-Exchange-
Server-2003-environment.html

> We are a small co and I was wanting opinions on installing a new Exchange
> Server on the same hardware as our Web Server.  Mail Server and Web Server
[quoted text clipped - 6 lines]
> Thanks in Advance
> Tim
Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2009 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.