Hi,
I am currently testing out deploying OCS2007 together with ISA2004 the internal AD domain is 2003 the internal and external FQDN are the same.
I am trying to clarify the correct way to deploy OCS2007 when you have one firewall which protects both the internal network and the DMZ My firewall is configured as follows;
External 81.*.*.*/27
DMZ 192.168.0.1/24
Internal 10.10.0.1/24
My plan was to have an ISA2004 server in the DMZ long with the Access Edge and Web Conferencing Edge server (these roles on the same server)
I have already attempted to deploy, however having read a number of articals I have stopped as I believe I have the network configuration incorrect. Following what I have read here is what I plan now;
ISA SRV in DMZ 2 x NICS
NIC1 192.168.0.2 (External default Gateway 192.168.0.1 Hardware Firewall)
NIC2 192.168.200.1 (Permiter connected to External NIC of Access Edge)
OCS2007 Access Edge
NIC1 192.168.200.2 (External Connected to Internal NIC of ISA srv)
NIC2 192.168.0.3 (Internal Connected and routed to Hardware Firewall
I believe that should I wish to have an Edge A/V server then a third NIC would be required on the Access Edge server or better still seperate that out)
Am I also right in saying it is the prefered configuration to not have the Access Edge a member of the internal domain ?
I would be really gratefull if someone could confirm this is the correct approach, please keep in mind this is only a testing inviroment and not for production purposes.
Any Help Gratefully recieved
Ashley Mothershaw
MCSE, MCSA, MCSA Messenging NCSA
