My situation is a bit unusual due to Balkanized network, email and IT
security responsibilities.
Basically, I will need to setup something in the DMZ to handle Outlook Web
Access and Mobile Access from external points. All email delivery and
sending is handled internally so I don't need that to cross the DMZ. I
pickup and send through enterprise and they take care of AV and spam.
However, they don't (and can not for other reasons) provide mobile access
and OWA which is critical to our needs.
I've got about 80 mailboxes currently running Exchange 2003 with direct
internet connection but will be migrating to 2007 and setting it up on the
internal network. OWA and mobile are currently working well.
Looking at the roles, it appears I'd need to configure an edge transport in
the DMZ but it's not clear to me how this also handles OWA and mobile
access. Most of what I read refers to the SMTP functions and leaves the OWA
and mobile to the imagination. I've been investigating port forwarding but
I'm not sure what ports and the powers that be have stated they don't want
to do it.
I'm open to suggestions on the best means to set this up.
Jerry M. Wright
jwright@jhmi.edu