1 / 36

Module 9: Managing Routing

Module 9: Managing Routing. Video. Overview. Explaining How Message Routing Works in an Exchange Organization Configuring Routing in an Exchange Organization Explaining Internet Connectivity Concepts and Protocols Managing Connectivity to the Internet Discussion: Managing Routing.

zaza
Download Presentation

Module 9: Managing Routing

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Module 9: Managing Routing

  2. Video Overview • Explaining How Message Routing Works in an Exchange Organization • Configuring Routing in an Exchange Organization • Explaining Internet Connectivity Concepts and Protocols • Managing Connectivity to the Internet • Discussion: Managing Routing

  3. Lesson: Explaining How Message Routing Works in an Exchange Organization • What Are Routing Groups? • What Are Routing Group Connectors? • When Is More Than One Routing Group Necessary? • Multimedia: How Messages are Routed Within and Between Routing Groups

  4. What Are Routing Groups? Routing Group Master • Routing groups are groups of servers running Exchange that are connected over permanent network links • The routing group master tracks and maintains routing for all the servers in the routing group • Message routing in an Exchange organization: • Can occur on the same server or among servers within a routing group • Occurs between routing groups by using connectors Routing Group A Routing Group Master Routing Group B

  5. Connectors are components that link routing groups so that messages travel reliably and efficiently between groups • You can create one or more connectors and then configure: • Message connection schedules • Message priority • Message content • Message size limits • Message delivery restrictions • Cost • Public folder referrals Routing Group A Connector Routing Group B What Are Routing Group Connectors?

  6. Use just one routing group when the servers running Exchange: • Have permanent and reliable connections to each other • Belong to the same Active Directory forest • Connect consistently and reliably to the routing group master Multiple routing groups may be necessary if any of these apply: • Network connections are slow or intermittent • The network is unreliable or unstable • Message transmission is complex and indirect • Message transmission must be scheduled • Public folder referrals must be controlled Routing Group A Routing Group B When Is More Than One Routing Group Necessary?

  7. This presentation describes: • How messages are routed within a routing group • How messages are routed between routing groups Multimedia: How Messages Are Routed Within and Between Routing Groups

  8. Lesson: Configuring Routing in an Exchange Organization • The Connectors That Exchange Supports • Considerations for Using Routing Group Connectors • Considerations for Using SMTP Connectors • Considerations for Using X.400 Connector • How to Create a Routing Group • How to Create a Routing Group Connector • How to Monitor Server, Connector, and Resource Status

  9. The simplest to configure, this is the recommended tool for connecting routing groups that are located in the same Exchange organization Routing Group connector Establishes an SMTP messaging route between two routing groups or between a routing group and an SMTP host SMTP connector Establishes an X.400 messaging route between two routing groups or between a routing group and an X.400 system X.400 connector The Connectors That Exchange Supports

  10. Bridgehead Server Bridgehead Server Bridgehead Server Routing Group Connector Routing Group A Routing Group B Considerations for Using Routing Group Connectors Routing Group connectors: • Can be configured to use zero, one, or multiple local bridgehead servers • Must be used in conjunction with TLS or a security policy to provide security • Must resolve the IP address of the target bridgehead server

  11. Considerations for Using SMTP Connectors SMTP connectors: • Can be used to identify multiple local bridgehead servers • Can be configured to use outbound TLS • Must resolve the target bridgehead server using DNS • Must configure with address spaces Routing Group B SMTP Connector Dial-up connection IMS SMTP Connector Routing Group A Exchange Server Site

  12. X.400 connectors: • Require you to configure an MTA service transport stack for the connector • Do not support multiple bridgehead servers • Require address space to control message routes Considerations for Using the X.400 Connector Cost = 10 X.400 Connectors Cost = 20 Routing Group A Routing Group B

  13. Read the scenarios Determine possible solutions Discuss your solutions with the class 1 2 3 Practice: Deciding on the Best Way to Connect Routing Groups

  14. To create a routing group: In the Exchange System Manager console tree, browse to Routing Groups Right-click Routing Groups, click New, and then click Routing Group 1 2 Practice How to Create a Routing Group create Routing Group A Administrator

  15. create Practice Administrator How to Create a Routing Group Connector To create a routing group connector: In the Exchange System Manager console tree, browse to Connectors Right-click Connectors, click New, and then click Routing Group Connector In the Properties dialog box, specify the local and remote bridgehead servers Configure any delivery options, delivery restrictions, or content restrictions 1 2 3 4

  16. Unreachable Available Administrator Practice Available Available How to Monitor Server, Connector, and Resource Status To monitor server, connector, and resource status: In the Exchange System Manager console tree, expand Tools, expand Monitoring and Status, and then click Status In the details pane, view the status of servers, connectors, and resources 1 2

  17. Lesson: Explaining Internet Connectivity Concepts and Protocols • How an SMTP Connection Works • Common SMTP Commands and Reply Codes • How an ESMTP Connection Works • Common ESMTP Commands • What Are MX Records? • How to Configure DNS to Support an Exchange Organization

  18. How an SMTP Connection Works Connection Initiated 220 <FQDN> Ready HELO <FQDN> 250 <FQDN> Hello MAIL FROM:<sender> 250 <sender> Sender OK RCPT TO:<sender> 250 <sender> DATA SMTP Sender (Client) 354 Start mail input… SMTP Sender (Server) Sending data QUIT 221 <FQDN> Service closing …

  19. Common SMTP Commands and Reply Codes

  20. A protocol that extends SMTP by providing additional capabilities What is ESMTP? How an ESMTP Connection Works Connection Supports ESMTP Connection Initiated 220 <FQDN> Ready EHLO <FQDN> 250 <FQDN> Hello Returns list of supported extensions SMTP Sender (Client) SMTP Sender (Server) Connection Does Not Support ESMTP Connection Initiated 220 <FQDN> Ready EHLO <FQDN> 500 Unrecognized command

  21. Common ESMTP Commands

  22. Read the scenarios Determine possible solutions Discuss your solutions with the class 1 2 3 Practice: Explaining Internet Connectivity Concepts and Protocols

  23. An MX record is a DNS record that tells other computers your e-mail server IP address and name so that you can receive SMTP e-mail • When an SMTP host sends an e-mail message to another SMTP host, DNS resolves the domain name of the receiving host to its TCP/IP address by using MX records • A typical company has multiple MX records registered in DNS to provide fault tolerance if an SMTP host becomes unavailable What Are MX Records?

  24. To configure DNS to support an Exchange organization: Configure Exchange to meet your SMTP requirements Provide DNS with the MX records necessary to support your SMTP address space Add MX records to each DNS namespace that point to your Exchange SMTP hosts 1 2 3 Practice How to Configure DNS to Support an Exchange Organization

  25. Lesson: Managing Connectivity to the Internet • Steps You Can Take to Control Internet E-Mail Access • How to Create and Configure an SMTP Connector • Methods for Securing SMTP Traffic • How to Restrict User Accounts from Sending Internet E-Mail • How to Configure SMTP Relays in Exchange • When to Use and Restrict Open Relaying in Exchange • How to Prevent or Restrict Open Relaying in Exchange • How to Connect Exchange Servers to the Internet by Using Routing and Remote Access • How to Configure Exchange to Retrieve E-Mail from an ISP • How to Identify Problematic E-Mail Domains

  26. You can: • Create an additional virtual server and configure an SMTP connector to use it as a bridgehead server • Limit the scope of the SMTP connector to the routing group • Configure the credentials on an SMTP connector if the remote SMTP server requires authentication • Configure the SMTP connector to only receive e-mail or send e-mail • Configure Internet message formats and message delivery parameters SMTP virtual server Internet Administrator Steps You Can Take to Control Internet E-Mail Access The default SMTP virtual server connects Exchange to the Internet automatically. You can create additional SMTP virtual servers and associate them with SMTP connectors

  27. create and configure Administrator Practice How to Create and Configure an SMTP Connector To create and configure an SMTP connector: In the Exchange System Manager console tree, browse to Connectors Right-click Connectors, point to New, and then click SMTP Connector Provide a name for the connector, define the local bridgehead server, and configure the address space for the connector 1 2 3

  28. Encryption P@$$w0rD Resource User Plaintext Ciphertext #4(*d hello Decryption What is the sending host for this IP address? DNS Server Exchange Server Methods for Securing SMTP Traffic

  29. In the Exchange System Manager console tree, browse to Connectors Right-click the connector that you want to restrict, and then click Properties On the Delivery Restrictions tab, specify the name of the sender or senders in the Accept messages from or Reject messages from area 1 2 3 Internet SMTP Virtual Server Sorry Greg! Practice Greg Weber How to Restrict User Accounts from Sending Internet E-Mail

  30. Practice How to Configure SMTP Relays in Exchange Different ways to configure SMTP relays in Exchange: • Configure an SMTP virtual server to use a smart host • Configure the SMTP virtual server to forward unresolved messages to a smart host • Configure an SMTP connector to use a smart host • Configure an SMTP virtual server as a relay host • Configure the SMTP virtual server to limit which servers can relay e-mail messages • Configure domains that you want to relay messages to

  31. From: Contoso “Buy my products” From: Contoso “Buy my products” “Buy my products” When to Use and Restrict Open Relaying in Exchange • To combat mail relaying attacks, prevent or restrict open relaying on any Exchange server connected to the Internet • Sometimes, relaying is required. For example you may have POP3 and IMAP4 clients that rely on SMTP for message delivery and have legitimate reasons for sending e-mail messages to external domains A Mail Relaying Attack Contoso Corporate Office E-mail Server Internet Attacker

  32. To prevent or restrict open relaying: In the Exchange System Manager console tree, browse to Servers Expand the Protocols container on the server that you want to configure Expand SMTP, right-click the SMTP virtual server, and then click Properties On the Access tab, click the Relay In the Relay Restrictions dialog box, select Only the list below and make sure that the list is blank Clear the Allow all computers which successfully authenticate to relay, regardless of the list above check box To restrict by user, specify a subset of users 1 2 3 4 5 6 7 Practice How to Prevent or Restrict Open Relaying in Exchange

  33. Exchange Server Routing and Remote Access Internet How to Connect Exchange Servers to the Internet by Using Routing and Remote Access After a modem is added, click Start, and then click Administrative Tools Click Routing and Remote Access, and select the server to configure Right-click Ports, and then click Properties In the Port Properties dialog box, click Configure, select the Demand-dial routing connections (inbound and outbound) check box, and then click OK Create a demand-dial interface to dial into the ISP Add a default network route that uses the newly created demand-dial interface 1 2 3 4 5 6

  34. To configure Exchange to use ETRN commands to pull e-mail: In the Exchange System Manager console tree, browse to the Connectors container for the routing group Right-click the SMTP connector, and then click Properties In the Properties dialog box, click Advanced, and then select Request ETRN/TURN when sending messages Select the Additionally request mail at specified times check box 1 2 3 4 Practice How to Configure Exchange to Retrieve E-Mail from an ISP

  35. How to Identify Problematic E-Mail Domains There are two commands you can use to identify problematic e-mail domains: • Telnet telnet fully_qualified_domainname_of_the_host 25 • Nslookup Nslookup –querytype=mx domainname

  36. Read the scenarios Determine possible solutions Discuss your solutions with the class 1 2 3 Discussion: Managing Routing

More Related