I also posted this in the Exchange Server 2003 Setup
newsgroup, but I wanted to get a good consensus, so I'm
posting here too:
On my network I have 1 PDC w/ a few other services running
such as Software Update Services and Symantec Antivirus
Corp. I also have a Secondary DC that runs a restricted
ftp/web server. Both servers are running Windows Server
2003. There are a little over 30 client machines all
running XP Pro. All clients and servers are behind a
FreeBSD based firewall connected to the internet through a
business DSL line. I would not like anyone be able to
easily gain access to any of my systems or information.
However, there is no sensitive information, and so if they
did it would not be a HUGE problem.
My question is this... I've heard that mail servers can be
very insecure. I am thinking about installed Exchange
2003. I just wanted to get some input on where I should
deploy it. I would really like to put it on my primary DC,
but if it is going to be a big security risk I can put it
on my secondary. If even putting it on my secondary isn't
recommended, I can get a third computer to run it off of,
but I'd really like to not do that unless it will
compromise the network too much to do otherwise. Another
question I had is whether or not the computer I install it
on can stay behind the firewall (with ports 110 and 25
forwarded of course), if I need to put it in the DMZ, or
if it needs to go in front of the firewall altogether.
I have never really used exchange before, and I'm sort of
looking forward to it, but I wanted to make sure about all
of this first. I would really like to do this tonight so
that it can be up and running by tomorrow, so if anyone
can quickly respond I would very much appreciate it. Thank
