Existing setup for organisation with 3 x accepted SMTP domains:
- Mx: foodservices.com
- Mx: foodsales.com
- Mx: foodrd.com
.
All users logon using an foodservices domain account.
Existing hardware firewall (no TMG), which can be use for address re-direction.
So far, all 3 mx records points to 10.10.10.10 (= mail.foodservices.com i.e. simply the name of the firewall). Firewall forwards traffic to to mail filter which forwards to Exchange.
I wish to implement Exchange external services – OWA, ActivSync, OA, Autodiscover.
Q1: For my UC certificate is the following enough?:
- Webmail.Foodservices.com
- Autodiscover.foodservices.com
- Autodiscover.foodsales.com
- Autodiscover.foodrd.com
.
My thinking is that foodservices.com will cover OWA, ActivSync, OA for both foodservices and foodsales. OWA address can be foodservices.com/owa for both sets of employees, this isn’t an issue.
Q2: Also could I have used mail.foodservices.com or would this have caused issues (as the firewall is called mail.foodservices.com). Happy enough to use webmail anyway.
Q3: If the above UC cert is ok, can I use a single external DNS record for foodservices.com and foodsales.com. (e.g. webmail.foodservices.com) Can I point this to the existing address I use for MX redirects (10.10.10.10) or do I need a new address configured on the firewall.
Q4: Do I need DNS records for 3 x autodiscover?
Q5: When I configure my address in the firewall, do I simply add a rule to redirect it to corresponding internal address i.e. exchserver.foodserv.local…and all the extended address e.g. /owa, /activsync etc. will work as is.
Q6: Do I need to install the certs on the Exchange and / or the firewall. Obviosuly they are not required on the mail filter.