Re: Remote Mail Users

[Benoit Dicaire <BDicaire () nrj com>]

Why don't you move the RAS to the internal network. You can secure a ras
session with a token
device via TACAS or Radius.

At 11:45 AM 23/09/97 GMT, you wrote:
> THE PROBLEM - Exchange server can accept SMTP mail but cannot operate as
an SMTP 
> post-office.  I DO NOT WANT to open any further ports in the firewall.  I
have 
> had suggested a POP3 server within the firewall with that connected to the
SMTP 
> connector of exchange but that means that any user who could be both on the 
> internal network and who could work from home on a laptop would be a user
on two 
> main systems.  How do I ensure that whichever system they log in they get
the 
> same mail?  At the worst case I could accept a system where the mail is
sent to 
> both but can this even be improved on?
>
> Horrible picture follows:
>
> Internet ----> Firewall ----> POP3 server -----> Exchange Server ----> user
>                  |
>              Shiva Modem stack
>                  |
>             Remote laptop user.
>
> The firewall permits only ports 25 and 80.
>
> The preference would be to have the remote users also using exchange
client set 
> to dialup networking although I beleive(?) exchange is not POP3 compliant.


---
Benoit Dicaire       | (mailto:BDicaire () NRJ Com) | NRJ Informatique     
Internet Architect   | (514) 990-7177            | HTTP://www.NRJ.Com