Exchange 2007 CAS/OWA role and Office Communication Server 2007 Edge role
We have Exchange 2003 with 1500 users, with two mailbox servers in our two main sites, and a single Exchange 2003 front-end server providing OWA services. We have also trialled Office Communications Server 2007, and have deployed the Edge role for OCS on a desktop PC in our DMZ, but now we are ready to rollOCS out to users. We are going to deploy Exchange 2007, and plan on a pair of CAS servers for OWA in our DMZ (one in each of our two main sites). OWA uses SSL on port 443. OCS uses ports 443, 5061 and 3478. Does anyone know if we can have the OCS 2007 Edge role and the Exchange 2007 CAS role installed and coexist on the same physical server in our DMZ? We don't want to end up with 4 servers (two OWA/CAS and two OCS Edge) because of our two sites. I expect that we would have two different external DNS names (such as ocs.mydomain.com.au and owa.mydomain.com.au) with SSL certificates of course, but would I need to have two different external/public IP addresses for each server & service? Could I get this working with the server having two IP addresses in the DMZ and have OCS bound to one IP and CAS bound to the other IP? How would I be able to simplify the URL for OWA if I had both CAS role and OCS Edge role (as both are using port 443)? http://technet.microsoft.com/en-us/library/aa998359(EXCHG.80).aspx- URL for OWA. Thanks.
July 9th, 2008 2:47pm

Per microsoft's documentation the only exchange 07 role that should go into a perimeter network is the Edge transport; they suggest just Nat'ing your CAS. Since either way you'd be walking into an unsupported config, why not run 2 physical boxes each with 2 VM's splitting exchange and OCS roles?
Free Windows Admin Tool Kit Click here and download it now
July 10th, 2008 12:00am

Thanks for your reply, although it has not helped with my main, central question; Does anyone know if we can have the OCS 2007 Edge role and the Exchange 2007 CAS role installed and coexist on the same physical server? Both OCS and CAS use port 443. We do not intend on opening a hole from the outside Internet to our internal servers, so the CAS role will be in our DMZ - but we need to work out if we need to buy two servers or can have both roles on one machine. We will not be running ESX in our DMZ, as the license cost is as much as another physical server. We will not be a software firewall like ISA in our DMZ as we already have hardware firewalls. Has anyone out there else put OCS and Exchange CAS onto the same machine?
July 10th, 2008 2:37am

Remember that Exchange 2007 is 64 bit and needs a 64 bit Windows, OCS is 32 bit but can be used on both 64 and 32. You probably could run them on same box but you would need to tweak some configuration cause by sharing the same box and several IP on the same box, SSL on port 443 for example.. I wouldnt do it, you would end up with a complex configuration and I doubt that it would be supported
Free Windows Admin Tool Kit Click here and download it now
July 11th, 2008 12:05am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics