Hi, I've been reading a lot about the FrontEnd-BackEnd Exchange 2003 architecture. ..

Now we have (Exchange 2000) FE Server on a DMZ with a public IP, and a BE Server on the corporate network with a private IP and tons of ports open from FE to BE and Domain Controllers for authentication stuff...


We are in migration to 2003 process... and I think that the best solution will be to install both servers (FE and BE) on the corporate network, and do NAT from a public address to a private FE IP (using 443 port only for SSL), what do you guys think about it?

By the way, any good HIDS I could use in the front end?

Thx!