Chapter 9
-
Upload
cameroon45 -
Category
Technology
-
view
764 -
download
5
description
Transcript of Chapter 9
![Page 1: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/1.jpg)
11
VIRTUAL SERVERS Chapter 7
![Page 2: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/2.jpg)
Chapter 7: Virtual Servers 2
OVERVIEW
Exchange Server 2003 virtual servers
Virtual servers in a clustering environment
Creating additional virtual servers
Configuring virtual servers
Front-end and back-end configuration
Authentication
Encryption
Diagnostic logging
![Page 3: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/3.jpg)
Chapter 7: Virtual Servers 3
EXCHANGE SERVER 2003 VIRTUAL SERVERS
HTTP Yes
No
Default Virtual ServerDefault Virtual Server EnabledEnabled
SMTP
NNTP
POP3
IMAP4
Yes
No
No
![Page 4: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/4.jpg)
Chapter 7: Virtual Servers 4
VIRTUAL SERVERS IN A CLUSTERING ENVIRONMENT
Microsoft Windows Cluster service: Exchange Server 2003 installs as a virtual
server
Failover to other node
Network load balancing: Create identical redundant virtual servers on
all nodes
Configuration of every server in the cluster must be the same
![Page 5: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/5.jpg)
Chapter 7: Virtual Servers 5
VIRTUAL SERVER REQUIREMENTS
Static IP address
Network name
One or more dedicated physical disks
Exchange 2003 Server System Attendant
![Page 6: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/6.jpg)
Chapter 7: Virtual Servers 6
DEFAULT VIRTUAL SERVER CONFIGURATIONS
(All Unassigned)
Virtual Virtual ServerServer TCP PortTCP Port
IP IP AddressAddress SSL PortSSL Port
POP3 110
119
IMAP4
NNTP
HTTP
SMTP
143
80
25
(All Unassigned)
(All Unassigned)
(All Unassigned)
(All Unassigned)
995
563
993
443
N/A
![Page 7: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/7.jpg)
Chapter 7: Virtual Servers 7
POP3 VIRTUAL SERVERS
Retrieve a specific user’s mail from the server Access only server inboxes Do not send e-mail Can configure the following:
Access to specific computers, groups of computers, or domains
Authentication (back-end only) Encryption Number of inbound connections Messaging format
![Page 8: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/8.jpg)
Chapter 7: Virtual Servers 8
IMAP4 VIRTUAL SERVERS
Very similar to POP3
Do not support uuencode or binhex for Macintosh
Can be configured to do the following: List public folders
Disable complete public folder listings
Enable fast message retrieval
![Page 9: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/9.jpg)
Chapter 7: Virtual Servers 9
NNTP VIRTUAL SERVERS
Access newsgroups
Enable Microsoft Outlook users to participate in online discussions
Let you assign a moderator to a newsgroup
![Page 10: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/10.jpg)
Chapter 7: Virtual Servers 10
NNTP VIRTUAL SERVERS (CONT.)
Can be configured to do the following:
Define expiration policies
Allow control messages Limit inbound connections
Include or exclude single computers, subnets, and entire domains
Limit the length of time idle connections remain logged on to the server
Limit the total size of articles that a user can post during a single connection
Limit the size of individual articles that a user can post
Encrypt the connectionAuthenticate users
![Page 11: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/11.jpg)
Chapter 7: Virtual Servers 11
HTTP VIRTUAL SERVERS
Exchange virtual server configured using IIS Manager
Additional HTTP virtual servers configured using Exchange System Manager
Virtual directories provide additional content
HTTP virtual servers support OWA
![Page 12: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/12.jpg)
Chapter 7: Virtual Servers 12
HTTP AND WEBDAV
HTTP and Web Distributed Authoring and Versioning (WebDAV) provide access to the following: Documents
Applications
![Page 13: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/13.jpg)
Chapter 7: Virtual Servers 13
SMTP VIRTUAL SERVERS
Internet standard for transporting and delivering electronic messages
Default SMTP virtual server installed and enabled
Can configure the following: Security options Message delivery options Mail relay Message filtering TLS encryption
![Page 14: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/14.jpg)
Chapter 7: Virtual Servers 14
DEMONSTRATION: CONFIGURING THE EXCHANGE VIRTUAL SERVER
![Page 15: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/15.jpg)
Chapter 7: Virtual Servers 15
DEMONSTRATION: CREATING AN ADDITIONAL HTTP VIRTUAL SERVER
![Page 16: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/16.jpg)
Chapter 7: Virtual Servers 16
DEMONSTRATION: CONFIGURING AN ADDITIONAL HTTP VIRTUAL SERVER
![Page 17: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/17.jpg)
Chapter 7: Virtual Servers 17
DEMONSTRATION: CREATING ADDITIONAL POP3, IMAP4, AND SMTP VIRTUAL SERVERS
![Page 18: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/18.jpg)
Chapter 7: Virtual Servers 18
DEMONSTRATION: CONFIGURING THE ADDITIONAL POP3 VIRTUAL SERVER
![Page 19: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/19.jpg)
Chapter 7: Virtual Servers 19
DEMONSTRATION: CONFIGURING THE DEFAULT IMAP4 VIRTUAL SERVER
![Page 20: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/20.jpg)
Chapter 7: Virtual Servers 20
DEMONSTRATION: CONFIGURING THE DEFAULT SMTP VIRTUAL SERVER
![Page 21: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/21.jpg)
Chapter 7: Virtual Servers 21
DEMONSTRATION: CREATING AN ADDITIONAL NNTP VIRTUAL SERVER
![Page 22: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/22.jpg)
Chapter 7: Virtual Servers 22
DEMONSTRATION: CONFIGURING THE ADDITIONAL NNTP VIRTUAL SERVER
![Page 23: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/23.jpg)
Chapter 7: Virtual Servers 23
FRONT-END AND BACK-END CONFIGURATION
Provides a unified namespace
Reduces SSL overhead
Front-end virtual servers handle incoming client connections
Back-end virtual servers run the databases
Create a virtual HTTP server on every back-end server for each front-end server
Authentication and connection timeout settings vary between server roles
![Page 24: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/24.jpg)
Chapter 7: Virtual Servers 24
AUTHENTICATION
Anonymous
Basic
Integrated Windows
Simple Authentication and Security Layer (SASL)
Digest
.NET Password
![Page 25: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/25.jpg)
Chapter 7: Virtual Servers 25
ENCRYPTION
Requires a certificate Resource intensive (especially processor) SSL and TLS encryption require basic
authentication Encryption jumbles message so that third
parties cannot read it Authentication ensures users are who they
claim to be Digital signature proves that a specific
person is the message sender
![Page 26: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/26.jpg)
Chapter 7: Virtual Servers 26
ENCRYPTION METHODS
Encrypts all traffic between source and destination
Invisible to user
Not specific to e-mail
SSL Typically implemented on IMAP4, POP3, and HTTP virtual servers on front-end Exchange servers
Implemented on SMTP virtual servers
Both sender and receiver need to implement TLS
Typically used for communication between partner organizations
Not used for general Internet e-mail
TLS
IPSec
![Page 27: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/27.jpg)
Chapter 7: Virtual Servers 27
AUTHENTICATION OPTIONS: ADDITIONAL HTTP VIRTUAL SERVER ON A BACK-END SERVER
![Page 28: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/28.jpg)
Chapter 7: Virtual Servers 28
AUTHENTICATION OPTIONS: ADDITIONAL HTTP VIRTUAL SERVER ON A FRONT-END SERVER
![Page 29: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/29.jpg)
Chapter 7: Virtual Servers 29
AUTHENTICATION OPTIONS: POP3 AND IMAP4 VIRTUAL SERVERS ON A BACK-END SERVER
![Page 30: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/30.jpg)
Chapter 7: Virtual Servers 30
AUTHENTICATION OPTIONS: POP3 AND IMAP4 VIRTUAL SERVERS ON A FRONT-END SERVER
![Page 31: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/31.jpg)
Chapter 7: Virtual Servers 31
AUTHENTICATION OPTIONS: NNTP VIRTUAL SERVER
![Page 32: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/32.jpg)
Chapter 7: Virtual Servers 32
AUTHENTICATION OPTIONS: SMTP VIRTUAL SERVER
![Page 33: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/33.jpg)
Chapter 7: Virtual Servers 33
AUTHENTICATION OPTIONS: EXCHANGE VIRTUAL SERVER
![Page 34: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/34.jpg)
Chapter 7: Virtual Servers 34
DEMONSTRATION: DISCONNECTING USERS
![Page 35: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/35.jpg)
Chapter 7: Virtual Servers 35
DIAGNOSTIC LOGGING
Records authentication, connection, and client action events
Set the level of logging on the host server
Set the logging level and category for a specific service
Events logged in server application log
![Page 36: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/36.jpg)
Chapter 7: Virtual Servers 36
SETTING A DIAGNOSTIC LEVEL
![Page 37: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/37.jpg)
Chapter 7: Virtual Servers 37
VIEWING A DIAGNOSTIC LOGGING ENTRY
![Page 38: Chapter 9](https://reader035.fdocuments.us/reader035/viewer/2022070302/5482a5c3b4af9f45508b45e4/html5/thumbnails/38.jpg)
Chapter 7: Virtual Servers 38
SUMMARY
Exchange virtual server in a clustered environment
Protocol virtual servers: SMTP, NNTP, POP3, IMAP4, HTTP
Front-end and back-end configuration
Authentication
Encryption