Hello dears,
we have following environment
Site one (Internet Facing):
- TMG servers to publish OWA, Outlook Anywhere, ActiveSync
- Symantec Brightmail Gateways to send/receive mails to/from external domains
- 3 CAS, 4 HUBs, 3 MBX
Site two (Non-Internet Facing):
- TMG servers (standby)
- Additional redundant Symantec Brightmail Gateways
- 3 CAS, 4 HUBs, 3 MBX
All 6 MBX servers in both sites are members of one DAG.
All Exchange Servers are not allowed to access internet.
Public certificate installed on TMG servers: webmail.domain.com
Internal Certificate (From internal CA) installed on CAS servers: webmail.domain.com and client access server FQDNs.
we are planning to have Office 365 hyprid deployment.
My Question:
1) Is it mandatoray to have mail flow only through HUB server with Public IP or can we use SMTP gateway?
2) What is the requirement for the certificate? where it should be installed? with what names?
3)What is the internet requirements for servers participating in hyprid deployment (CAS, HUB, ADFS, DirSync)?
4) Sometime we are moving services to the second site as DR testing, so we enable SMTP gateways and TMG in this DR site. In that case how we can activate ADFS, DirSync and mail flow in DR site?
http://tariqjaber.com/blog