Do I need two network interface cards (NICs) in ISA Server or just one? How can I have ISA Server 2004 in a DMZ? I have found a lot of technical documents about ISA Server with Exchange Server, but they all have ISA Server as the firewall.
Yes, you need to have two NIC cards to support the Reverse Proxy function of ISA Server for OWA and OMA. You can still have ISA Server in the DMZ of a third-party firewall. Regardless of the firewall you utilize to create the DMZ, ISA Server in the DMZ has become the recommended configuration from Microsoft for providing the best security for Exchange 2003. See the Microsoft article, Using ISA Server 2004 with Exchange Server 2003, for more information.
Actually you do not need two NICs for the Reverse Proxy function. This is one of the only configurations for ISA Server that does not require another NIC. We have this same setup in our environment where ISA Server is only used for Outlook Web Access (OWA), and we only have one NIC card installed.
Do you have comments on this Ask the Expert Q&A? Let us know.
Related information from SearchExchange.com:
Related Q&A from Richard Luckett
Exchange was running low on space, and Outlook asked if I wanted to archive my email messages. What will happen if I do that?continue reading
We need to move more than 20,000 Exchange 2010 public folders to Exchange 2013. What's the best way to do this?continue reading
I'm migrating Exchange 2010 mailboxes to Exchange 2013. How will Outlook clients know the mailboxes moved after the migration?continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.