I am posting this in General Issues as well. I hope that is okay.
Exchange services on E2k Front End server will not even start (SA can't see Active Directory). Furthermore, logging in with cached info (can not see domain controllers to authenticate).
Apparently, even though I opened all ports, the perimeter network servers can not access the internal network.
After reading other posts, I gather I must publish all services (DNS, authentication, global catalog, kerboros, rpc, netlogon), or create a VPN from the perimeter to the internal network.
Microsoft clearly states in just about all their Front End/Back End literature, that appropriate ports must be opened on the internal firewall.
So why do I have to publish? Why won't the traffic be routed to the internal network?
Does Tom's book cover these specifics? If not, are there any references anyone can point me to?
Again, thanks in advance.