Sign in
 
HomeProductsLibraryLearnDownloadsSupportForums
Microsoft Forefront TechCenter >
configure TMG 2010 and Exchange 2010 for e-mail and content filtering.

Answered configure TMG 2010 and Exchange 2010 for e-mail and content filtering.

  • Thursday, February 14, 2013 12:47 PM
     
     
    Sign In to Vote
    0
    Hi there!
    i need to configure external mail on my exchange 2010 and cofig it with TMG2010 to use e-mail and content filtering and corporate mail.
    we have TMG2010 installed with 2 NICs, edge transport on it, Exchange 2010, AD+DNS. all servers are running Windows Server 2008R2.
    I'm new in TMG and Exchange so the question is > 
    1. how to configure them (order and details), 
    2. how to do a RIGHT config for DNS MX records, 
    3. how to config e-mail filtering to deny sending of source codes from clients computers to outside.

    Maybe it's not the right place in forum to put this questions, but i need some help and assistance on this. i've make a lot of research for "how to" or "step by step" but looks like everything is for advanced admins.

    if i need to provide more details, please tell me.

    thanks
     

All Replies

  • Friday, February 15, 2013 10:39 AM
     
     Answered
    Sign In to Vote
    0

    Hi,

    1): http://technet.microsoft.com/en-us/library/ee207141.aspx

    2): DNS MX Records must point to the Public IPv4 addresses for E-Mail

    3) IMHO there is no way to block this special type of E-Mail content

    regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de

     
  • Friday, February 15, 2013 1:18 PM
     
     
    Sign In to Vote
    0

    Dear Marc

    about MX record

    in hosting website i've made these changes

    add MX record "mail.mycompany.com".

    add A record "mail.mycompany.com" with Static public IP address of my TMG server eg. 31.47.xx.xx (here's my TMG2010, Edge Transport server and Forefront Protection for Exchange Server)

    next added in my internal DNS server

    created zone in forwarded lookup zone "mycompany.com"

    A record "mail.mycompany.com" with the local ip addres of my Exchnage server. eg 192.168.1.205

    MX record mail.mycompany.com with priority 10

    now trying to synchronize Hub transport with Edge, but it cannot connect to egde computer (have role "allow all outbound traffic from exchange to TMG)

    i know that this must be a very simple thing, but my brain is already overloaded with the articles i've read.

    now i'm going to uninstall Edge and FPES to install them as in technet link.

    any info needed for diagnostics?


     
  • Friday, February 15, 2013 3:22 PM
     
     
    Sign In to Vote
    0

    Hi,

    are you able to Telnet Port 25 from the TMG Server to the Hub Transport Server. The Hub Transport Server accepts Mail connections from the TMG Server?

    regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de

     
  • Saturday, February 16, 2013 9:21 AM
     
     
    Sign In to Vote
    0

    No, cannot.

    i've make a lot of research and read that some says Edge must be in DMZ, others says it can be on domain joined TMG.

    Egde was uninstalled manualy (error while remove-edgesubscription, LDAP is unavailable) from this article http://exchangemaster.wordpress.com/2010/01/25/manual-uninstall-of-exchange-2k7-edge-server/

    now i'll try to install it again using technet's document. i'll write about results later

     
  • Tuesday, February 19, 2013 8:23 AM
    Moderator
     
     
    Sign In to Vote
    0

    Hi,

    Thank you for the post.

    You may also read this guide to publish Exchange service: http://technet.microsoft.com/en-us/library/bb794751.aspx

    Regards,

    Nick Gu - MSFT

     
  • Tuesday, February 19, 2013 1:53 PM
     
     
    Sign In to Vote
    0

    ok, thank you very much!

    after all i've removed edge  and looks like my exchange dies... now trying to reincarnate it :)

     
  • Thursday, February 21, 2013 11:32 AM
     
     
    Sign In to Vote
    0

    after hours of research and work i didn't recover my exchange server. setup.com /m:recoverServer didn'y help. it shows an error like >cannot find exchange on AD<

    so i got my first snapshot of VM with clear Win2008R2, then run all the steps to prepare and config new exchange.

    then recovered lost users (one by one) and now it's time to configure exchange then TMG. i'll write later about results.

     
  • Thursday, February 21, 2013 3:04 PM
     
     Answered
    Sign In to Vote
    0

    OK, so i do it without egde coz my gateway is domain joined.

    tomorrow i'll try e-mail policy on TMG using mail body filtering to prevent sending source codes from company.

    everything was great, thanks Nick and techdays.ru for help!!!