Planning Messaging Security

Posted on

These questions are based on 70-238 – Pro: Deploying Messaging Solutions With Microsoft Exchange Server 2007.

 

Objective: Planning Messaging Security and Compliance Implementation
Sub-Objective: Plan the network layer security implementation

 

Single Answer, Multiple Choice

 

You are a messaging professional for GlobeComm Corporation. The messaging system in your company has Exchange 2007 servers. You performed a typical installation of Exchange Server 2007 in the internal network. The Edge Transport server is deployed in the perimeter network. You want to enable Edge synchronization in your Exchange organization.

 

Which port should you open on the firewall to replicate information to the Edge Transport server using EdgeSync?

 

 

  1. Open TCP port 25 from the Hub Transport server role to the Edge Transport server role.
  2. Open TCP port 25 from the Edge Transport server role to the Hub Transport server role.
  3. Open TCP port 50636 Secure Lightweight Directory Access Protocol (LDAPS) from the Hub Transport server role to the Edge Transport server role.
  4. Open TCP port 3389 for Remote Desktop Protocol (RDP) from the internal network to the Edge Transport server.

 

Answer:
C. Open TCP port 50636 Secure Lightweight Directory Access Protocol (LDAPS) from the Hub Transport server role to the Edge Transport server role.

 

Tutorial:
You should open port TCP 50636 LDAPS from the Hub Transport server role to the Edge Transport server role to replicate information to the Edge Transport server using EdgeSync. This port is required for the Hub Transport server deployed in the internal network to replicate information using EdgeSync to the Edge Transport servers deployed in the perimeter network. By default, the Edge Transport server uses TCP port 50389 for LDAP and TCP 50636 for Secure LDAP. All communications from the Hub Transport server to the Edge Transport server use Secure LDAP.

 

You should not open TCP port 25 from the Hub Transport server role to the Edge Transport server role. Opening TCP port 25 from the Hub Transport server to the Edge Transport server in an Exchange organization allows Hub Transport servers to send e-mail to an Edge Transport server. It cannot replicate information to the Edge Transport server. In this scenario, you should open TCP port 50636 LDAPS from the Hub Transport server role to the Edge Transport server role.

 

You should not open TCP port 25 from the Edge Transport server role to the Hub Transport server role. Opening TCP Port 25 from the Edge Transport server to the Hub Transport server in an Exchange organization allows the Edge Transport server to send inbound Simple Mail Transport Protocol (SMTP) e-mail to Hub Transport servers. In this scenario, you should open TCP port 50636 LDAPS from the Hub Transport server role to the Edge Transport server role to replicate information to the Edge Transport server using EdgeSync.

 

You should not open TCP port 3389 for RDP from the internal network to the Edge Transport server role. This configuration would be required if you used Remote Desktop to remotely administer the Edge Transport server. In this scenario, you should open TCP port 50636 LDAPS from the Hub Transport server role to the Edge Transport server role to replicate information to the Edge Transport server using EdgeSync.

 

Reference:
Microsoft TechNet > Preparing to Run the Microsoft Exchange EdgeSync Service

Like what you see? Share it.Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone
cmadmin

ABOUT THE AUTHOR

Posted in Archive|

Comment: