chapter 9
DESCRIPTION
TRANSCRIPT
11
VIRTUAL SERVERS Chapter 7
Chapter 7: Virtual Servers 2
OVERVIEW
Exchange Server 2003 virtual servers
Virtual servers in a clustering environment
Creating additional virtual servers
Configuring virtual servers
Front-end and back-end configuration
Authentication
Encryption
Diagnostic logging
Chapter 7: Virtual Servers 3
EXCHANGE SERVER 2003 VIRTUAL SERVERS
HTTP Yes
No
Default Virtual ServerDefault Virtual Server EnabledEnabled
SMTP
NNTP
POP3
IMAP4
Yes
No
No
Chapter 7: Virtual Servers 4
VIRTUAL SERVERS IN A CLUSTERING ENVIRONMENT
Microsoft Windows Cluster service: Exchange Server 2003 installs as a virtual
server
Failover to other node
Network load balancing: Create identical redundant virtual servers on
all nodes
Configuration of every server in the cluster must be the same
Chapter 7: Virtual Servers 5
VIRTUAL SERVER REQUIREMENTS
Static IP address
Network name
One or more dedicated physical disks
Exchange 2003 Server System Attendant
Chapter 7: Virtual Servers 6
DEFAULT VIRTUAL SERVER CONFIGURATIONS
(All Unassigned)
Virtual Virtual ServerServer TCP PortTCP Port
IP IP AddressAddress SSL PortSSL Port
POP3 110
119
IMAP4
NNTP
HTTP
SMTP
143
80
25
(All Unassigned)
(All Unassigned)
(All Unassigned)
(All Unassigned)
995
563
993
443
N/A
Chapter 7: Virtual Servers 7
POP3 VIRTUAL SERVERS
Retrieve a specific user’s mail from the server Access only server inboxes Do not send e-mail Can configure the following:
Access to specific computers, groups of computers, or domains
Authentication (back-end only) Encryption Number of inbound connections Messaging format
Chapter 7: Virtual Servers 8
IMAP4 VIRTUAL SERVERS
Very similar to POP3
Do not support uuencode or binhex for Macintosh
Can be configured to do the following: List public folders
Disable complete public folder listings
Enable fast message retrieval
Chapter 7: Virtual Servers 9
NNTP VIRTUAL SERVERS
Access newsgroups
Enable Microsoft Outlook users to participate in online discussions
Let you assign a moderator to a newsgroup
Chapter 7: Virtual Servers 10
NNTP VIRTUAL SERVERS (CONT.)
Can be configured to do the following:
Define expiration policies
Allow control messages Limit inbound connections
Include or exclude single computers, subnets, and entire domains
Limit the length of time idle connections remain logged on to the server
Limit the total size of articles that a user can post during a single connection
Limit the size of individual articles that a user can post
Encrypt the connectionAuthenticate users
Chapter 7: Virtual Servers 11
HTTP VIRTUAL SERVERS
Exchange virtual server configured using IIS Manager
Additional HTTP virtual servers configured using Exchange System Manager
Virtual directories provide additional content
HTTP virtual servers support OWA
Chapter 7: Virtual Servers 12
HTTP AND WEBDAV
HTTP and Web Distributed Authoring and Versioning (WebDAV) provide access to the following: Documents
Applications
Chapter 7: Virtual Servers 13
SMTP VIRTUAL SERVERS
Internet standard for transporting and delivering electronic messages
Default SMTP virtual server installed and enabled
Can configure the following: Security options Message delivery options Mail relay Message filtering TLS encryption
Chapter 7: Virtual Servers 14
DEMONSTRATION: CONFIGURING THE EXCHANGE VIRTUAL SERVER
Chapter 7: Virtual Servers 15
DEMONSTRATION: CREATING AN ADDITIONAL HTTP VIRTUAL SERVER
Chapter 7: Virtual Servers 16
DEMONSTRATION: CONFIGURING AN ADDITIONAL HTTP VIRTUAL SERVER
Chapter 7: Virtual Servers 17
DEMONSTRATION: CREATING ADDITIONAL POP3, IMAP4, AND SMTP VIRTUAL SERVERS
Chapter 7: Virtual Servers 18
DEMONSTRATION: CONFIGURING THE ADDITIONAL POP3 VIRTUAL SERVER
Chapter 7: Virtual Servers 19
DEMONSTRATION: CONFIGURING THE DEFAULT IMAP4 VIRTUAL SERVER
Chapter 7: Virtual Servers 20
DEMONSTRATION: CONFIGURING THE DEFAULT SMTP VIRTUAL SERVER
Chapter 7: Virtual Servers 21
DEMONSTRATION: CREATING AN ADDITIONAL NNTP VIRTUAL SERVER
Chapter 7: Virtual Servers 22
DEMONSTRATION: CONFIGURING THE ADDITIONAL NNTP VIRTUAL SERVER
Chapter 7: Virtual Servers 23
FRONT-END AND BACK-END CONFIGURATION
Provides a unified namespace
Reduces SSL overhead
Front-end virtual servers handle incoming client connections
Back-end virtual servers run the databases
Create a virtual HTTP server on every back-end server for each front-end server
Authentication and connection timeout settings vary between server roles
Chapter 7: Virtual Servers 24
AUTHENTICATION
Anonymous
Basic
Integrated Windows
Simple Authentication and Security Layer (SASL)
Digest
.NET Password
Chapter 7: Virtual Servers 25
ENCRYPTION
Requires a certificate Resource intensive (especially processor) SSL and TLS encryption require basic
authentication Encryption jumbles message so that third
parties cannot read it Authentication ensures users are who they
claim to be Digital signature proves that a specific
person is the message sender
Chapter 7: Virtual Servers 26
ENCRYPTION METHODS
Encrypts all traffic between source and destination
Invisible to user
Not specific to e-mail
SSL Typically implemented on IMAP4, POP3, and HTTP virtual servers on front-end Exchange servers
Implemented on SMTP virtual servers
Both sender and receiver need to implement TLS
Typically used for communication between partner organizations
Not used for general Internet e-mail
TLS
IPSec
Chapter 7: Virtual Servers 27
AUTHENTICATION OPTIONS: ADDITIONAL HTTP VIRTUAL SERVER ON A BACK-END SERVER
Chapter 7: Virtual Servers 28
AUTHENTICATION OPTIONS: ADDITIONAL HTTP VIRTUAL SERVER ON A FRONT-END SERVER
Chapter 7: Virtual Servers 29
AUTHENTICATION OPTIONS: POP3 AND IMAP4 VIRTUAL SERVERS ON A BACK-END SERVER
Chapter 7: Virtual Servers 30
AUTHENTICATION OPTIONS: POP3 AND IMAP4 VIRTUAL SERVERS ON A FRONT-END SERVER
Chapter 7: Virtual Servers 31
AUTHENTICATION OPTIONS: NNTP VIRTUAL SERVER
Chapter 7: Virtual Servers 32
AUTHENTICATION OPTIONS: SMTP VIRTUAL SERVER
Chapter 7: Virtual Servers 33
AUTHENTICATION OPTIONS: EXCHANGE VIRTUAL SERVER
Chapter 7: Virtual Servers 34
DEMONSTRATION: DISCONNECTING USERS
Chapter 7: Virtual Servers 35
DIAGNOSTIC LOGGING
Records authentication, connection, and client action events
Set the level of logging on the host server
Set the logging level and category for a specific service
Events logged in server application log
Chapter 7: Virtual Servers 36
SETTING A DIAGNOSTIC LEVEL
Chapter 7: Virtual Servers 37
VIEWING A DIAGNOSTIC LOGGING ENTRY
Chapter 7: Virtual Servers 38
SUMMARY
Exchange virtual server in a clustered environment
Protocol virtual servers: SMTP, NNTP, POP3, IMAP4, HTTP
Front-end and back-end configuration
Authentication
Encryption