Chapter 15. Planning Exchange Server 2007 Security
In-depth understanding is not required in every area, but it is important to understand how these concepts work on Exchange Server 2007 and what to configure where.
The main subjects of this chapter are as follows:
Defining firewall rules for every Exchange server role
Network-based secure communication using Internet Protocol Security (IPSec) or Virtual Private Network (VPN)
Session-based secure communication using Transport Layer Security (TLS)
Implementing transport rules and edge rules
Implementing Secure Multipurpose Internet Mail Extensions (S/MIME)
Implementing message journaling
Protecting Exchange Server 2007 with ISA Server 2006
Planning the Network Layer Security Implementation
This section covers the requirements for planning the network layer security for an Exchange Server 2007 implementation. We'll start with firewall rules and then continue with an overview of secure communications solutions using IPSec, VPN, and TLS.
Defining Firewall Rules
When the first versions of Exchange came out, security was not a major consideration. Obviously, this has changed in recent years and a firewall became part of the base system of a Windows 2003 server. This section covers what's important when defining firewall rules and which ports and protocols must be allowed to enable certain types of services between servers and clients.
Note
When defining ...
Get MCITP: Microsoft® Exchange Server 2007 Messaging Design and Deployment: Study Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.