In-depth understanding is not required in every area, but it is important to understand how these concepts work on Exchange Server 2007 and what to configure where.
The main subjects of this chapter are as follows:
Defining firewall rules for every Exchange server role
Network-based secure communication using Internet Protocol Security (IPSec) or Virtual Private Network (VPN)
Session-based secure communication using Transport Layer Security (TLS)
Implementing transport rules and edge rules
Implementing Secure Multipurpose Internet Mail Extensions (S/MIME)
Implementing message journaling
Protecting Exchange Server 2007 with ISA Server 2006
This section covers the requirements for planning the network layer security for an Exchange Server 2007 implementation. We'll start with firewall rules and then continue with an overview of secure communications solutions using IPSec, VPN, and TLS.
When the first versions of Exchange came out, security was not a major consideration. Obviously, this has changed in recent years and a firewall became part of the base system of a Windows 2003 server. This section covers what's important when defining firewall rules and which ports and protocols must be allowed to enable certain types of services between servers and clients.
When defining ...