Hi Joshua,
You have to do the same thing to keep it from relaying anyway no matter if
it is behind a firewall of not. You have to expose the SMTP Service to the
Internet for it to function no matter what, and if it is misconfigured it
will still relay even from behind the firewall. By the same token, the
proper configuration that keeps it from relaying will also keep it from
relaying even if it is exposed directly to the Internet without a firewall.
I do like to keep them behind a firewall of course, for all of the security
reasons involved, but I don't do it to prevent relaying. And of course I
don't like all my eggs in one basket either.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/IS...cessRules.html
Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/downlo...7/ts_rules.doc
Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp
Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/e...epartners.mspx
-----------------------------------------------------
"Joshua Bolton" <(E-Mail Removed)> wrote in message
news:87EDD021-21C2-42C8-BB81-(E-Mail Removed)...
> "I intend to use Server 2003 as an Internet facing Web
> and email (Exchange) server."
>
> Bad idea. Ever hear of all your eggs in one basket? Remember the outcome
> of that story?
>
> Should be:
> Hardware firewall/nat router<>ISA or other proxy server/Exchange web
> interface server<>firewall if no ISA<> Exchange
>
> Unless you like your server being a span forwarder and getting blacklisted
> on the internet. Where do you think spam comes from? Email servers
> without
> sufficent protection.
>
Similar Threads
Linear Mode
