locked
weird doubts with exchange publishing RRS feed

  • Question

  • 1. Is it possible to send email to internet just by having edge server configured in place, ie. with edge subscription done with internal hub transport server. i.e. exchange has not been published using tmg yet.

    2. is it possible to publish exchange using tmg , with public ip (ie. no domain name registered) ? for eg. if i want to be able to login to my mail from internet , but use the mail to send/receive  only for internal users?

     


    $hAz@iB
    • Changed type Alan.Gim Tuesday, September 13, 2011 9:01 AM
    Wednesday, September 7, 2011 9:51 AM

All replies

    1. Yes, you can create an edge sub or a send connector to do that.
    2. You should have the appropiate DNS records which will be used by your users to connect, I assume via OWA/OA.

    Sukh
    Wednesday, September 7, 2011 12:53 PM
  • Can you please provide links on how-to's .

     


    $hAz@iB
    Wednesday, September 7, 2011 2:32 PM
    1. Most of it is on technet, check this for 2007 -http://technet.microsoft.com/en-us/library/bb232180(EXCHG.80).aspx

    Sukh
    Wednesday, September 7, 2011 2:36 PM
  • As your other questions are related exchange 2010, I assume this question is also for exchange 2010. Please let me know if it’s not

    The articles below will help

    Transport Server Post-Deployment Tasks

    Publishing Exchange Server 2010 with Forefront Unified Access Gateway 2010 and Forefront Threat Management Gateway 2010

    Tuesday, September 13, 2011 9:00 AM
  • Yes,my purpose for posting in the exchange forum is because my questions/doubts are related to the process of publishing exchange to the internet. And as the general practice, I have my edge server in the DMZ , and I intend to publish exchange using TMG 2010.

    I have gone through the links provided, although some missing information is what is getting me stuck here.

    The client does not have a registered domain name as of now, nor the certificates.

    Firstly, I want to know if there is a way I can publish exchange using the public IPs that we have from the ISP.

    There is a lot of confusion about DNS as we are getting internet through the ADSL modem , so the external interface that comes in to the TMG has the 192.168.1.x range.

    So If i want to publish somehow using the public ip, I understand I might be able to send out the mail but not receive it , as there is no mx record to translate back the domain name to the ip address. But is even sending out possible? and also how do i do it without having certificates?

    my motive here is to see the exchange login page published by TMG , and if i will be able to login from another location. for timebeing i can ignore the certificate error that would show up .

    Going through these links, they all point to the URLs to be used in reference to the CAS server. This is very confusing as I do not understand where does the Edge server come in then? I mean if the internal links are pointing directly to the internal CAS server, is it even secure? whats is the point of having Edge server then?

    With regards to certificates, every where it mentions it is very critical to have certificates ready and imported to the servers before publishing. Now I do not know what all information i would need for purchasing the certificates, as I do not understand what kind of external names do I have to use, are they supposed to be the same as a domain name that I purchase or something totally different to avoid similarity with the internal domain and servers?

    I cannot find any service online that would allow me to temporarily register a domain name and for that matter buy temporary certificate for the sake of testing and being sure before I go ahead and purchase.

    About the DNS, since I get internet via the adsl modem, how am I supposed to enter DNS information on the TMG server and how do I enter public IPs on the external nic, when my public ip is already in the range 192.168.1.x  or is it supposed to be the real public ip? would that work then?

     


    $hAz@iB
    Tuesday, September 13, 2011 2:44 PM