DOCUMENT:Q178532  10-SEP-1999  [exchange]
TITLE   :XFOR: Configuring Exchange Internet Protocols with Proxy Server
PRODUCT :Microsoft Exchange
PROD/VER:winnt:2.0,5.0,5.5
OPER/SYS:
KEYWORDS:exc5 exc55

======================================================================
-------------------------------------------------------------------------------
The information in this article applies to:

 - Microsoft Exchange Server, versions 5.0, 5.5 
 - Microsoft Proxy Server version 2.0 
-------------------------------------------------------------------------------

SUMMARY
=======

The Microsoft Exchange Internet protocols can be configured to allow Internet
clients to connect to the Microsoft Exchange Server information store through
Microsoft Proxy Server version 2.0. Microsoft Exchange Server requires the
addition of a configuration file, .ini, and installation of WinSock Proxy Client
in order to work with Proxy Server 2.0. This is not necessary if Microsoft Proxy
Server 2.0 is installed on the Microsoft Exchange Server.

MORE INFORMATION
================

WinSock Proxy Client allows you to bind any Internet protocol to the external
network interface of Microsoft Proxy Server. After the Internet protocol is
bound to the external network interface, it is available to clients outside the
proxy server. The proxy server then monitors for connections on behalf of the
information store.

When the configuration file is properly added and the appropriate Exchange
service is restarted, the Exchange Server computer binds to the appropriate port
on the network interface of the proxy server. This is easily verified by telnet
to the respective port of the proxy server.

The respective ports are as follows:

   POP3: 110, 995 for Secure POP3 (SSL)
   IMAP4: 143, 993 for Secure IMAP4 (SSL)
   LDAP: 389, 636 for Secure LDAP (SSL)
   NNTP: 119, 563 for Secure NNTP (SSL)

Configuration is as follows:

1. Install and configure Microsoft Proxy Server.

2. Install and test the WinSock Proxy (WSP) client on the Exchange Server
   computer by running a WinSock client application.

   NOTE: The ping command, ICMP packets, is not passed by the proxy server. Use
   telnet or ftp.

3. Create a second Wspcfg.ini file for the Exchange store (Store.exe). Add the
   information below to this Wspcfg.ini file and place the file in the directory
   where Store.exe is located, typically Exchsrvr\Bin.

          [STORE]
          ServerBindTcpPorts=(Appropriate port for protocol used, multiple
                              protocols can be configured)
          Persistent=1
          KillOldSession=1

   Sample .ini entry for LDAP appears as follows:

          [DSAMAIN]
          ServerBindTcpPorts=389 (636 for Secure)
          Persistent=1
          KillOldSession=1

4. If dynamic packet filtering is enabled (recommended), the proxy server
   dynamically opens all necessary ports when they are requested. No special
   configuration is needed.

5. Stop and restart the Exchange information store (or directory for LDAP).

6. You should now be able to contact the Exchange Server computer by connecting
   to the proxy server's Internet IP address using an Internet client.

NOTE: In order to bind to Secure Sockets Layer (SSL) ports, you must use the
ProxyBindIP= statement in addition to the other entries. Without such a
statement the Exchange Server computer will not bind to the proxy server
properly, and thus not allow secure passage of messages through the Proxy server
using SSL.

Additional query words: XIMS XADM XGEN IIS PROXY NNTP IMAP4 POP3 LDAP TCPIP

======================================================================
Keywords          : exc5 exc55 
Technology        : kbAudDeveloper kbExchangeSearch kbExchange500 kbExchange550 kbZNotKeyword2 kbProxyServSearch kbProxyServ200
Version           : winnt:2.0,5.0,5.5
Hardware          : ALPHA x86
Issue type        : kbhowto

=============================================================================

THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND.  MICROSOFT DISCLAIMS
ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES
OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.  IN NO
EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR
ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL,
CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF
MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE
POSSIBILITY OF SUCH DAMAGES.  SOME STATES DO NOT ALLOW THE EXCLUSION
OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES
SO THE FOREGOING LIMITATION MAY NOT APPLY.

Copyright Microsoft Corporation 1999.