Exchange Server TechCenter >
Exchange Server 2010 Forums
>
Exchange Server 2010
>
how to realize anti-virus goal in exchange 2010
how to realize anti-virus goal in exchange 2010
- how to realize anti-virus goal in exchange 2010?
All Replies
- to filter virus infected messages using the edge transport server, you must install forefront security for exchange or a 3rd party product on the server
- Jacky, you may have just answered your own question.
The Edge transport server is one role that can be deployed for message hygiene at the gateway level and you may utilize Forefront or a 3rd party vendor to perform the anti-virus functionality on messages going in and out of your organization. You also have the option of deploying the same anti-virus software on your hub transport servers and/or using a 3rd party appliance at the gateway level which is useful if you do not wish to deploy the Edge role.
Be sure to install File-Level aware anti-virus on all Exchange servers, but perform the appropriate exclusions which are similar to Exchange 2007: http://technet.microsoft.com/en-us/library/bb332342.aspx
Sean | http://seanv.wordpress.com- Proposed As Answer bySean van Osnabrugge Saturday, November 07, 2009 12:47 AM
- Greetings,
Sean (below) is correct in that you can use the Hub Transport role to also include anti-spam or anti-virus agents for protection, however keep in mind the Edge role is a more secure option because it is not part of your Active Directory domain (you use AD Lightweight Services instead) and it sits in the perimeter or DMZ. Also, if you go looking for AntiSpam solutions on your Hub Transport server you wont find the agents installed. You need to open the EMS, navigate to the Scripts folder and run the ./install-antispamagents.ps1 script to have them show up under Server Configuration - Hub Transport. You will then see a new tab called Anti-Spam.
Here is the real kicker. I'm working personally with the RTM version of Exchange and just ran the script to ensure my info to you is correct... and the Anti-Spam tab shows up... but only two agents are available. So now I'm looking for a workaround to that myself. ;-) Ultimately we are all in the same boat working through this together. But hopefully this information was helpful.
J. Peter Bruzzese
www.exclusivelyexchange.com
(MCT/Triple-MCSE/MCITP) - Hi,
Is it true that now we can install Edge role on Forefront TMG (same server) which is part of domain?
alfa21 - Greetings,
I don't use ForeFront, but it looks like that is possible.
This link takes you step by step through the process and provides additional links.
http://blogs.technet.com/yuridiogenes/archive/2009/10/19/walkthrough-exchange-2010-rc-edge-role-and-forefront-protection-2010-beta-for-exchange-installation-on-forefront-tmg-2010-rc.aspx
Hope that helps.
J. Peter Bruzzese
www.exclusivelyexchange.com
(MCT/Triple-MCSE/MCITP)
