Exchange 2003 vpn site connection

TheMSsForum.com: The Microsoft Software Forum

Hi,

We are in the process of designing a new Single Exchange 2003.
Currently, 5 business units in five different locations across Europe
connected throuh VPN (1 mbits). Each location has 800 mailboxes, 1 Exchange
server. The network topology is Hub and Spoke: 2 locations are main, and the
main location connect to other location.
1) What are the ports to be open to allow traffic between Exchange 2003
servers?
2) If the main locations do not support VPN routing, how the internal mail
will flow?

thanks in advance
Top

Re: Exchange 2003 vpn site connection by Al

Al
Sun May 29 13:30:18 CDT 2005

Check out http://www.microsoft.com/exchange/library and read up on the
RPC/HTTP and SMTP routing concepts. It'll provide a lot more detail than
you'll get in an email.


Al



"Slimard" <slimobeny@hotmail.com> wrote in message
news:eG55wSHZFHA.3272@TK2MSFTNGP14.phx.gbl...
> Hi,
>
> We are in the process of designing a new Single Exchange 2003.
> Currently, 5 business units in five different locations across Europe
> connected throuh VPN (1 mbits). Each location has 800 mailboxes, 1
> Exchange
> server. The network topology is Hub and Spoke: 2 locations are main, and
> the
> main location connect to other location.
> 1) What are the ports to be open to allow traffic between Exchange 2003
> servers?
> 2) If the main locations do not support VPN routing, how the internal mail
> will flow?
>
> thanks in advance
>
>


Top

Re: Exchange 2003 vpn site connection by Slimard

Slimard
Sun May 29 13:51:57 CDT 2005

Thanks. I found that article http://support.microsoft.com/?kbid=278339

"Al Mulnick" <amulnick_No_SPAM@ncDOTrr.com> wrote in message
news:OotB3xHZFHA.2128@TK2MSFTNGP14.phx.gbl...
> Check out http://www.microsoft.com/exchange/library and read up on the
> RPC/HTTP and SMTP routing concepts. It'll provide a lot more detail than
> you'll get in an email.
>
>
> Al
>
>
>
> "Slimard" <slimobeny@hotmail.com> wrote in message
> news:eG55wSHZFHA.3272@TK2MSFTNGP14.phx.gbl...
> > Hi,
> >
> > We are in the process of designing a new Single Exchange 2003.
> > Currently, 5 business units in five different locations across Europe
> > connected throuh VPN (1 mbits). Each location has 800 mailboxes, 1
> > Exchange
> > server. The network topology is Hub and Spoke: 2 locations are main, and
> > the
> > main location connect to other location.
> > 1) What are the ports to be open to allow traffic between Exchange 2003
> > servers?
> > 2) If the main locations do not support VPN routing, how the internal
mail
> > will flow?
> >
> > thanks in advance
> >
> >
>
>


Top

Re: Exchange 2003 vpn site connection by Al

Al
Sun May 29 19:59:23 CDT 2005

Will opening TCP 691 and TCP 25 do what you're after?
I didn't think so when you asked the question, but if so glad you have the
answer. I may have misread the question and thought about the clients vs.
the server to server.

Of course, if it's VPN I'm not sure I understand the full scope of the
question either but that's not likely important here.

Al



"Slimard" <slimobeny@hotmail.com> wrote in message
news:O$Nz%239HZFHA.3648@TK2MSFTNGP14.phx.gbl...
> Thanks. I found that article http://support.microsoft.com/?kbid=278339
>
> "Al Mulnick" <amulnick_No_SPAM@ncDOTrr.com> wrote in message
> news:OotB3xHZFHA.2128@TK2MSFTNGP14.phx.gbl...
>> Check out http://www.microsoft.com/exchange/library and read up on the
>> RPC/HTTP and SMTP routing concepts. It'll provide a lot more detail than
>> you'll get in an email.
>>
>>
>> Al
>>
>>
>>
>> "Slimard" <slimobeny@hotmail.com> wrote in message
>> news:eG55wSHZFHA.3272@TK2MSFTNGP14.phx.gbl...
>> > Hi,
>> >
>> > We are in the process of designing a new Single Exchange 2003.
>> > Currently, 5 business units in five different locations across Europe
>> > connected throuh VPN (1 mbits). Each location has 800 mailboxes, 1
>> > Exchange
>> > server. The network topology is Hub and Spoke: 2 locations are main,
>> > and
>> > the
>> > main location connect to other location.
>> > 1) What are the ports to be open to allow traffic between Exchange 2003
>> > servers?
>> > 2) If the main locations do not support VPN routing, how the internal
> mail
>> > will flow?
>> >
>> > thanks in advance
>> >
>> >
>>
>>
>
>


Top

Re: Exchange 2003 vpn site connection by Mark

Mark
Mon May 30 02:19:15 CDT 2005

On Sun, 29 May 2005 19:34:37 +0200, "Slimard" <slimobeny@hotmail.com>
wrote:

>Hi,
>
>We are in the process of designing a new Single Exchange 2003.
>Currently, 5 business units in five different locations across Europe
>connected throuh VPN (1 mbits). Each location has 800 mailboxes, 1 Exchange
>server. The network topology is Hub and Spoke: 2 locations are main, and the
>main location connect to other location.
>1) What are the ports to be open to allow traffic between Exchange 2003
>servers?

If you're using a VPN then everything is tunneled inside that service,
whatever the tcp/udp ports are for that. You don't open anything else
up outside that tunnel port.

>2) If the main locations do not support VPN routing, how the internal mail
>will flow?

If the locations don't support VPN then you need to create an island.
TCP 25 is the only real option to transfer mail between the two.
There is of course the issue of AD replication across firewall's,
discussed:
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerWhitepapers/C48C97E8-1C7B-4584-BC0D-59017DEEBE8A.mspx

You may well find that it's better to run that site as an entirely
independent location and follow Al's advice regarding email access.
That would entail removing the mail server from that location and
placing it centrally (migrating mail from that box onto a central one
and then leaving yourself with a spare box)

All that said, I can't see why any location would not support VPN.
There is also the option of an SSL based VPN solution. Neoteris
(Juniper) were the leaders in this field but are now being overtaken
by much more clever jonnies.


>
>thanks in advance
>

Top