Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
  • Students Click Here

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here


Exchange & Outbound Firewall rules

Exchange & Outbound Firewall rules

Exchange & Outbound Firewall rules

Running Exchange 2010 on a Windows 2008 R2 server. Our current Windows Firewall rules, specifically outbound rules, are pretty much out of the box. Overall, outbound is set to allow anything that doesn't match the rules.

A recent IT audit is leading us to only allow Outbound traffic on the Exchange server that is necessary. My thought is to turn off the larger rule allowing everything that does not match the out of the box outbound policies, while making sure that email can still function and get out as needed (ie; outbound to the domain controller).

I can see the Microsoft documentation outlining every port/service that Exchange 2010 needs (transport needs, hub needs, etc), but am a bit intimidated by that. Can anybody recommend something that I can refer to that will give me the bare minimum of what I need outbound for Exchange 2010?

RE: Exchange & Outbound Firewall rules

Is it a single Exchange server (not front end/backend)?

RE: Exchange & Outbound Firewall rules

Yes, we are a small organization with only about 80-100 mailboxes on one Exchange 2010 server. Said Exchange is sitting on a virtual MS Server 2K8 box.   

RE: Exchange & Outbound Firewall rules

You should just need SMTP for sending/receiving email. If you are doing more (web access, outlook anywhere), then you will need additional.

If you have a firewall (not on exchange, but at your Internet connection), then Exchange should only have a local/internal IP address which is not accessible from the outside and the rules for access controlled there, not on exchange.

RE: Exchange & Outbound Firewall rules

Well, the same Exchange server does serve up OWA as well. Also concerned with ports that need opened to talk to domain controller, etc. Thanks

RE: Exchange & Outbound Firewall rules

You can configure the firewall on Exchange to only block/control connections outside. So the firewall state for "Public Networks" would be on, but the one for Internal networks is off.

You can also just create a rule which allows all to your domain controller (by IP address).

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close