locked
Load Balancing CAS array and Forefront TMG 2010 RRS feed

Answers

  • The fact that no one has responded tells me not to bother using this product

    • Marked as answer by RTEAL Friday, April 1, 2011 4:12 PM
    Friday, April 1, 2011 4:11 PM
  • TMG is not used for load balancing but as a reverse proxy. Yes TMG is used alot, and yes the recommend deployment is to use a hardware loadbalancer in front of of at least TMG boxes which then go to your CAS boxes. There is a great whitepaper here.

    Publishing Exchange Server 2010 with Forefront Unified Access Gateway 2010 and Forefront Threat Management Gateway 2010

    http://www.microsoft.com/downloads/en/details.aspx?FamilyID=894bab3e-c910-4c97-ab22-59e91421e022&displaylang=en

     


    James Chong MCITP | EA | EMA; MCSE | M+, S+ Security+, Project+, ITIL msexchangetips.blogspot.com
    • Marked as answer by RTEAL Thursday, April 7, 2011 7:57 PM
    Saturday, April 2, 2011 6:37 PM

All replies

  • The fact that no one has responded tells me not to bother using this product

    • Marked as answer by RTEAL Friday, April 1, 2011 4:12 PM
    Friday, April 1, 2011 4:11 PM
  • TMG is not used for load balancing but as a reverse proxy. Yes TMG is used alot, and yes the recommend deployment is to use a hardware loadbalancer in front of of at least TMG boxes which then go to your CAS boxes. There is a great whitepaper here.

    Publishing Exchange Server 2010 with Forefront Unified Access Gateway 2010 and Forefront Threat Management Gateway 2010

    http://www.microsoft.com/downloads/en/details.aspx?FamilyID=894bab3e-c910-4c97-ab22-59e91421e022&displaylang=en

     


    James Chong MCITP | EA | EMA; MCSE | M+, S+ Security+, Project+, ITIL msexchangetips.blogspot.com
    • Marked as answer by RTEAL Thursday, April 7, 2011 7:57 PM
    Saturday, April 2, 2011 6:37 PM
  • TMG can be used for Load Balancing it does cookie based load-balancing or Source-IP Based Load Balancing if you create a server farm.
    Tuesday, October 2, 2012 11:41 AM
  • For the CAS Array using HLB is recommended. There are several choices out there, some I have used were very reasonable such as Kemp Devices, you can Bing them if you are interested in. If you have no budged at all you have to move on with poor man method, by using DNS load balancing, it gives you something at least.

    In case you need here is link for you to get started

    http://smtp25.blogspot.com/2012/04/how-to-set-client-access-server-array.html

    Now keep In mind if you can spend less than 1500$ go with HLB solution and trust me it will save many headaches and make your life easy.

    As far as TMG goes, you could set TMG accept HTTP and HTTPS traffic from outside of your network and publish rules to redirect to your CAS servers, but remember there is not real intelligent way of “Load balance” and there is no service awareness. It does work but do not expect so much from it, but meets two factor authentication etc. type of requirements. TMG widely being used as proxy server for outlook anywhere, OWA etc. Your internal MAPI traffic and redundancy will  need HLB solution, otherwise once again you have to go with Poor man method and configured your DNS accordingly.

    Good luck

    ocd


    Oz Casey, Dedeal MCITP (EMA), MCITP (EA), MCITP (SA) Visit smtp25.blogspot.com Visit Telnet25.wordpress.com   This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    Tuesday, October 2, 2012 3:02 PM