I don't know about the 515 but a PIX can do PAT. I have done this a few time and always put the FE Server inside with the BE Servers. FE/BE is only useful to load balance protocols. Has no security benefit. For that use the PIX and ISA(s).
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Pillai, Raj Sent: Friday, February 21, 2003 8:34 AM To: Exchange Discussions Subject: Exchange 2000 OWA & Cisco PIX 515 Hello Everyone, Here is a scenario: Exchange 2000 FE and BE configuration behind a PIX 515 firewall. FE Server is just for OWA, so that External users can access their email offsite. It works perfectly with the necessary ports enabled( 80,443,143,993).However, it is not desirable to leave 80 accessible due to potential security risk. My long-term solution is an ISA Server in the DMZ. In the interim, is there a way to configure the PIX 515 for Port address translation? I am speculating that on the PIX we can assign a different port number( e.g. port 8800..any port)and let the PIX resolve/translate/forward all requests to Port 80. My Network Administrator does not think the PIX 515 is compliant. Is there anyone in this group who has a similar environment? Thanks and happy Friday! Raj **************************************************************************** ** This e-mail message, including any attachments, contains information that is confidential, may be protected by the attorney/client or other applicable privileges, and may constitute non-public information. This message is intended to be conveyed only to the designated recipient(s). If you are not the intended recipient of this message, do not read it; please immediately notify the sender that you have received this message in error and delete this message.Unauthorized use, disclosure, dissemination, distribution, reproduction of this message or the information contained in this message or the taking of any action in reliance on it is strictly prohibited and may be unlawful. Thank you for your cooperation. **************************************************************************** ** _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
