Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Use ISA 2006 to Publish Mail protocols internally
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
 Limited time MSExchange.org offer! -- 1.Sep.2008 1:00:00 PM
|
|
TechGenix and SolarWinds have partnered to provide free copies of SolarWinds Exchange Monitor to all visitors who join the MSExchange.org Forums. SolarWinds Exchange Monitor is a handy desktop dashboard that continuously monitors Microsoft Exchange to deliver real-time insight into Exchange services, mail queue sizes, and host server health. Learn more about Exchange Monitor and the free offer!
|
Use ISA 2006 to Publish Mail protocols internally - 17.Sep.2008 2:03:17 AM
|
|
|
imran_mcse
Posts: 38
Joined: 11.Jan.2004
From: Dubai Internet City
Status: offline
|
We are working on deploying a new Exchange 2007 server with ISA 2006. ISA is dual-homed with the external NIC using a public IP and the internal NIC using private addresses on the same subnet as the Exchange servers.
All the Exchange Web services are published and working fine both internally and externally. We are using the same FQDN for all client connections so that users can seamlessly roam between the internal network and external network. This is a requirement.
To publish the Exchange services through ISA we had to turn OFF forms based authentication on the Exchange CAS server. This prevents clients from accessing the CAS server directly, so we had to publish the internal connections through ISA as well. Thus, all Exchange web services both internally and exernaly are going through ISA 2006, and it is all working fine.
The problem comes when we try to publish IMAPS, LDAPS, and SMTPS in the same manner. We are able to successfully publish these services through the ISA server to connections from the Internet, but we are not able to loop the connections back to the Exchange server from the inside.
For connections coming from the Internet, ISA matches them to the publishing rule as an Inbound connection matching the necessary ports. For connections coming from the inside, all the requests are recognized as Outbound, and do not match the Publishing Rule. Apparenly you can only use a Publishing rule with Inbound protocols.
I can't figure out a way to do this. I understand it doesn't make a lot of sense to have the connections go to the ISA server from the inside when they can just go directly to the Exchange server, but we need to use a single FQDN for all services and we cannot access the web services on the Exchange CAS server directly because of the non-Forms Based authentication.
Does anyone know of a way to publish IMAPS, SMTPS, and LDAPS on both interfaces in a dual-homed ISA 2006 environment? Any other ideas?
|
|
|
|
|
RE: Use ISA 2006 to Publish Mail protocols internally - 17.Sep.2008 3:50:10 PM
|
|
|
longman111
Posts: 92
Joined: 19.Jun.2007
Status: offline
|
I would post this over at isaserver.org - I recall seeing an article there that maybe addressed this.
|
|
|
|
|
RE: Use ISA 2006 to Publish Mail protocols internally - 18.Sep.2008 12:24:43 AM
|
|
|
imran_mcse
Posts: 38
Joined: 11.Jan.2004
From: Dubai Internet City
Status: offline
|
Cam you please post the link of that article?
|
|
|
|
|
RE: Use ISA 2006 to Publish Mail protocols internally - 18.Sep.2008 5:52:30 PM
|
|
|
longman111
Posts: 92
Joined: 19.Jun.2007
Status: offline
|
Just go to the site and search for it - that is no different than what I would do. However you could save yourself allot of time simply by posting your issue to the isaserver.org forum.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
