Hello,
I havea DMZ,where we plan to installTMGStandard(one adapter).Inthis DMZalso havetheExchange 2010 Edgerole.The main useis going to havetheTMGwillbepublishing theOWA.
Now Idoubt which is betteror morerecommended:
1.- Install theTMGin DMZandopen portstothe internal networkfor communication withtheDCs(RW)ofthe internal network,as withtheHUB/ CASExchange 2010.
or
2.-In addition to the TMG,alsoinstall an RODCin the DMZ,whichvalidatestheTMGandtheTMGonlycommunicate withtheHUB/ CASinternal network.
Thatyou think thatisbest solutionorthe best architecture?What thingsshould Iconsider?Never installan RODCandnot what isthe best architecture or possible problems thatmight causeme.
Thank you very much!
I havea DMZ,where we plan to installTMGStandard(one adapter).Inthis DMZalso havetheExchange 2010 Edgerole.The main useis going to havetheTMGwillbepublishing theOWA.
Now Idoubt which is betteror morerecommended:
1.- Install theTMGin DMZandopen portstothe internal networkfor communication withtheDCs(RW)ofthe internal network,as withtheHUB/ CASExchange 2010.
or
2.-In addition to the TMG,alsoinstall an RODCin the DMZ,whichvalidatestheTMGandtheTMGonlycommunicate withtheHUB/ CASinternal network.
Thatyou think thatisbest solutionorthe best architecture?What thingsshould Iconsider?Never installan RODCandnot what isthe best architecture or possible problems thatmight causeme.
Thank you very much!
