Q

Configuring OWA and OMA on ISA Server in a DMZ

Find out how to enable Outlook Web Access and Outlook Mobile Access from ISA Server 2004 with a third-party firewall.

I have Exchange 2003 and I want to enable Outlook Web Access (OWA) and Outlook Mobile Access (OMA) from ISA Server 2004. I don't want to keep ISA Server as a firewall. We already have a third-party firewall, and I'm planning to install ISA Server 2004 in a demilitarized zone (DMZ).

Do I need two network interface cards (NICs) in ISA Server or just one? How can I have ISA Server 2004 in a DMZ? I have found a lot of technical documents about ISA Server with Exchange Server, but they all have ISA Server as the firewall.

VIEW MEMBER FEEDBACK TO THIS ASK THE EXPERT Q&A.

Yes, you need to have two NIC cards to support the Reverse Proxy function of ISA Server for OWA and OMA. You can still have ISA Server in the DMZ of a third-party firewall. Regardless of the firewall you utilize to create the DMZ, ISA Server in the DMZ has become the recommended configuration from Microsoft for providing the best security for Exchange 2003. See the Microsoft article, Using ISA Server 2004 with Exchange Server 2003, for more information.

MEMBER FEEDBACK TO THIS ASK THE EXPERT Q&A:

Actually you do not need two NICs for the Reverse Proxy function. This is one of the only configurations for ISA Server that does not require another NIC. We have this same setup in our environment where ISA Server is only used for Outlook Web Access (OWA), and we only have one NIC card installed.
—Daniel B.

Do you have comments on this Ask the Expert Q&A? Let us know.

Related information from SearchExchange.com:

  • Expert Advice: Setting up ISA servers
  • Expert Advice: Firewall recommendations and VPN support
  • Article: Should you use ISA Server as your Exchange firewall?
  • Step-by-Step Guide: How to use ISA Server as an SMTP filter
  • Reference Center: Exchange Server firewalls tips and resources
  • Reference Center: ISA Server tips and resources
  • This was last published in July 2006

    Dig Deeper on ISA Server and Firewalls for Microsoft Exchange Server

    PRO+

    Content

    Find more PRO+ content and other member only offers, here.

    Have a question for an expert?

    Please add a title for your question

    Get answers from a TechTarget expert on whatever's puzzling you.

    You will be able to add details on the next page.

    Join the conversation

    1 comment

    Send me notifications when other members comment.

    By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

    Please create a username to comment.

    If you wan to deploy ISA and Exchange model, There re a lot of way. You can choose one of tree isa model. 3-leg Perimeter or Front Firewall and Back Firewall. If you want to get more information, Please contact with me, I'll help you. My email: nguyenhongthai2511@gmail.com,
    Cancel

    -ADS BY GOOGLE

    SearchWindowsServer

    SearchEnterpriseDesktop

    SearchCloudComputing

    SearchSQLServer

    Close