W
Wil Biscardi
We are currently running W2K Advanced Server. We have two
(2) W2K ISA 2000 servers with the external ISA acting as
the PDC and running IIS. We also have a W2K Exchange 2000
cluster running on 2 servers. Things have not been
working very well and we are working with consultants to
help us reconfigure this arrangement to a more "industry-
standard", "best-practices" setup....
One consultant suggests moving the PDC functionality from
the ISA server to the Exchange Cluster. One of the ISA
servers would then act as our external firewall while the
second ISA server would act as an internal firewall
creating a DMZ in the process. There are other details,
but this is the basic concept.
Another vendor is recommending a similar arrangement, but
they suggest obtaining a NEW server to act as the PDC.
The ISA servers and the Exchange servers would act as
member servers on the network.
Any comments, recommendations, advice would be
appreciated. We are sure that there are probably many
acceptable ways to set up a network that is secure,
redundant, etc., so there is more than likely not ONE
answer that says "this is THE way to do it." But we are
looking for suggestions from experts and those of you with
the technical experience to help shed some light on the
matter for us. Please advise. Thank you!
(2) W2K ISA 2000 servers with the external ISA acting as
the PDC and running IIS. We also have a W2K Exchange 2000
cluster running on 2 servers. Things have not been
working very well and we are working with consultants to
help us reconfigure this arrangement to a more "industry-
standard", "best-practices" setup....
One consultant suggests moving the PDC functionality from
the ISA server to the Exchange Cluster. One of the ISA
servers would then act as our external firewall while the
second ISA server would act as an internal firewall
creating a DMZ in the process. There are other details,
but this is the basic concept.
Another vendor is recommending a similar arrangement, but
they suggest obtaining a NEW server to act as the PDC.
The ISA servers and the Exchange servers would act as
member servers on the network.
Any comments, recommendations, advice would be
appreciated. We are sure that there are probably many
acceptable ways to set up a network that is secure,
redundant, etc., so there is more than likely not ONE
answer that says "this is THE way to do it." But we are
looking for suggestions from experts and those of you with
the technical experience to help shed some light on the
matter for us. Please advise. Thank you!