Just would like to know a very general question / fact. We are thinking about creating a new Exchange Organization... Exchange 2010... And we have a Astaro Full Guard Bundle. That means we can use Web Application Security. So my question now is.
Is it still neccessary to use a DMZ when implementing Web Application Security? I know its a stupid question... especially when you have several scenarios in order to implement an Exchange FrontEnd Server...
But please let me know if i have a wrong imagination of WAS...
When it comes to being secure, there is no such thing as 100%. It's all about risk reduction. Using the concept of Defense in Depth, if you can create separation by implementing a DMZ, then do so to make things just a little bit more secure.
__________________ ACE v8/SCA v9.3
...still have a v5 install disk in a box somewhere.
Quote