| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] RE: [FW-1] Exchange 2000 Server
- To: [email protected]
- Subject: Re: [FW-1] RE: [FW-1] Exchange 2000 Server
- From: "Morrison, Gordon" <[email protected]>
- Date: Tue, 13 Aug 2002 09:07:21 -0400
- Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
- Thread-index: AcJCIbx1N3k3HhwoSZWWoebLu2BbHgAp81LA
- Thread-topic: [FW-1] RE: [FW-1] Exchange 2000 Server
Unfortunately, the answer is just about everything. When the Oultook client tries to establish a MAPI connection to the server, they agree to use a random high port. You are much better off using OWA over SSL with certificates required on both sides if you are concerned about security. The DMZ based server should also be a front end server, with your Exchange server behind the firewall completely. You can lock down the ports to a limited range using the information in the following technet article:
http://support.microsoft.com/default.aspx?scid=kb;en-us;q270836 , but you will need to do this on any server that the users would be accessing via mapi.
good luck,
/Gordon
-----Original Message-----
From: Michael Snyder [mailto:[email protected]]
Sent: Monday, August 12, 2002 10:43 AM
To: [email protected]
Subject: [FW-1] RE: [FW-1] Exchange 2000 Server
That's very helpful but that does not help me. That link only allows
Exchange Sever to logon to the Domain. I need a list of services and ports
that I need to open up to allow Outlook clients to connect to the Exchange
2000 Server in the DMZ.
-----Original Message-----
From: Michael Knight [mailto:[email protected]]
Sent: Sunday, August 11, 2002 6:29 PM
To: [email protected]
Subject: Re: [FW-1] Exchange 2000 Server
Outlook Web Access for Exchange 5.5 uses TCP Port 80 and TCP High Ports
Outlook Web Access for Exchange 2000 uses TCP Port 80 and WebDav Extensions
(Gauntlet Firewall and MSProxy Server strip off WebDav Extensions as do
several others)
Exchange 5.5 Firewall Info:
http://support.microsoft.com/default.aspx?scid=KB;EN-US;q176466
Exchange 2000 Firewall Info:
http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q280132
-----Original Message-----
From: Michael Snyder [mailto:[email protected]]
Sent: Fri 8/9/2002 4:24 PM
To: [email protected]
Cc:
Subject: [FW-1] Exchange 2000 Server
Anybody have a list of services to add for users to connect to MS
Exchange 2000 via Outlook and Outlook Web Access?
*----------------------------------------------*
Michael Snyder, CSE
Network Administrator
[email protected]. 200
*----------------------------------------------*
At Home Healthcare
423 S. Beckham Ave.
Tyler, Texas 75702
*----------------------------------------------*
www.athomehealth.org <http://www.athomehealth.org/>
TRUST...it means everything!
N j 9ç¬ ~' k) z å Özf
!$â el !yã))ræ^ ãØay Vvå
fj)b b N ry bìf)+-äW zæ^{-- jäm $à& â' Xà fÂZÆØ'ì-Zé
*mÈÇj)_Z0è
^rJh {\
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
----------------------------------------------------
___________________NOTICE____________________________
This electronic mail transmission contains confidential information intended only for the person(s) named. Any use, distribution, copying or disclosure by any other person is strictly prohibited. If you received this transmission in error, please notify the sender by reply e-mail and then destroy the message. Opinions, conclusions, and other information in this message that do not relate to the official business of Bain & Company shall be understood to be neither given nor endorsed by the Company. When addressed to Bain clients, any information contained in this e-mail is subject to the terms and conditions in the governing client contract.
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|
