This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Load Balancing Web Mail (HTTPS traffic)

Hi all,

I hope anyone will support me with this case. I have a diagrams with exchange server 2016 and sophos :  2 Exchange Server (Mailbox01 & 02 )--> Sophos UTM --> Firewall draytek

In sophos UTM is SMTP security. And now, I want to configure load balancing web mail exchange 2016. As research, sophos UTM has a features " Server Load Balancing". I had configure but can't access to Exchange Server webmail. In my understanding, virtual server is IP of sophos and NAT ip sophos with port 443 through Draytek. So , I configured as above , right ? and Should I create a rule on sophos ? Please help and advise me .Thanks in advance. My English is not good to display. 

CHA-EX01 : 10.84.0.18/24

CHA-EX02: 10.84.0.19/24

Sophos in DMZ zone : 10.84.5.4/27.

 



This thread was automatically locked due to age.
Parents
  • Chao Tuan and welcome to the UTM Community!

    I think you will want to use 'Webserver Protection >> Web Application Firewall' for this instead of 'Server Load Balancing'.  Just use the CHA-EX0# servers as Real Servers in a Virtual Server that doesn't have a Firewall Profile and that is set to "Monitor" instead of "Reject" traffic.  If you study here, you will find recommendations on how to create more security for web access using WAF.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • Chao Tuan and welcome to the UTM Community!

    I think you will want to use 'Webserver Protection >> Web Application Firewall' for this instead of 'Server Load Balancing'.  Just use the CHA-EX0# servers as Real Servers in a Virtual Server that doesn't have a Firewall Profile and that is set to "Monitor" instead of "Reject" traffic.  If you study here, you will find recommendations on how to create more security for web access using WAF.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data