The edge transmission service role should be no stranger to everyone, especially to friends who are familiar with lync. When deploying the lync server product in an enterprise, the edge role must be deployed. However, in exchange, few enterprises deploy edge roles. As for why, you have to take a good look at the role of edge servers in exchange and lync. Next, let's take a look at the analysis:
1. Analysis of the Role of edge servers in lync and exchange
Role of the lync Edge Server:
Avoid direct access from the client to the server to the public network;
Edge servers must be deployed in the lync alliance;
Differentiate internal and external users and configure different policies for internal and external users;
The role of the exchange Edge Server:
Avoid direct access from the client to the server to the public network;
Changes the Internet Mail Flow;
Anti-spam and anti-malware.
These are the main functions of edge servers in exchange and lync. Edge servers are added in Exchange Server 2013 SP1, therefore, if you want to deploy an edge server, you must use the SP1 or later version. Next, let's start the deployment and high-availability solutions of the exchange Edge server.
2. Prerequisites
Before deploying the edge transport role, you must meet the following prerequisites:
-
We recommend that edge servers be deployed in DMZ;
It is recommended that the Edge server be in the working group status;
Add a domain name suffix to the Edge server;
Add the record of the Edge server in the internal DNS;
Install the Active Directory light Directory Service (adlds). You can install it through windows powershell and run the command "Install-windowsfeature adlds", for example:
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091480Nqng.png "/>
Of course, this service can also be installed through the Server Manager. You only need to install it successfully.
3. Install the edge transport Role
Run the Exchange Server 2013 SP1 installer, select "do not check for updates", and click "Next"
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091480pUWH.png "/>
Next step
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091480qboZ.png "/>
Select accept license terms, and next step
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091481v09A.png "/>
Select recommended or not recommended as needed. Next Step
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091481TjsD.png "/>
Select "edge transport role" ---- click "Next"
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091481GQq0.png "/>
Specify the installation path. Next Step
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091481WF5m.png "/>
After the prerequisite check is passed, click "Install"
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_14150914813CzQ.png "/>
After the installation is complete, click "finish" as follows:
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091482ZpfB.png "/>
4. Configure edge subscription
On the edge Transmission Server, create and export the edge subscription file. Open exchange powershell and run the following command "new-edgesubw.filename" C: \ edgesubscriptioninfo. xml ", for example:
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091482kb7l.png "/>
Copy the exported file to the mailbox role server.
Import the edge subscription file to the Active Directory site. Open exchange powershell in the mailbox server role and run:
New-edgesubw.filedata ([byte [] $ (get-content-path "C: \ edgesubscriptioninfo. XML "-encoding byte-readcount 0)-createinternetsendsendctor $ true-createinboundsendconnector $ true-site" wld"
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091482yguE.png "/>
5. Verify the deployment of the edge transport Role
Open the ECP management center and go to "mail stream" --- "Send connector". You can find that two send connectors are created, one is in, and the other is out. For example:
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091482JLIh.png "/>
Let's create a new email and send it to QQ mail to see the effect. After receiving the email, you can see that the email is sent to the Edge server through the email server, for example:
650) This. width = 650; "src =" http://img1.51cto.com/attachment/201411/4/8959108_1415091482wqGj.png "/>
6. high-availability solutions
In the company's actual environment, the high availability of the exchange edge Transmission Server mainly includes the following two solutions:
Deploy multiple exchange edge transmission servers and complete edge subscription configuration. Add all edge servers to the same Server Load balancer device (you can use the Network Load balancer that comes with Windows Server), and map the firewall port 25 to the NLB virtual IP address. In this way, the network load balancing of edge servers can be achieved, similar to the high availability of Client Access Server (CAS;
Deploy multiple exchange edge transmission servers and complete edge subscription configuration. Then modify the sending connector to Allow inbound and outbound emails to pass through different edge servers.
This document describes how to deploy the Exchange Server 2013 SP1 edge transport Role and configure edge subscription. After configuration, you can configure anti-spam and anti-malware protection based on your company's needs. I hope this document will help you. Thank you for your attention.
This article is from the "Bright Future" blog and will not be reproduced!
Exchange Server 2013 edge Transmission Server