| Home | Kaiming |
Paula: Domain Controller with Exchange 2003 SP2
Ex20071 and Ex20072 are member servers with Exchange 2007 SP1.
Ex20073 is a standalone server with Exchange 2007 SP1 (Edge Transport role). Because the Ex20073 is the 32-bit system, ADAMSP1_x86_English.exe is installed.
Even though Ex20073 is not a member of the domain, the following result should be expected. Its primary suffix must be set to your active directory domain name (e.g. work.com).
At Ex20071:
Get-ADSite
Name |
HubSiteEnabled |
Default-First-Site-Name |
False |
Get-SendConnector -id '*cost1' | fl address*,DNS*,Smart*,source*
AddressSpaces : {SMTP:*;1}
DNSRoutingEnabled : False
SmartHosts : {[70.79.160.209]}
SmartHostAuthMechanism : BasicAuth
SmartHostsString : [70.79.160.209]
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {EX20071}
Get-AcceptedDomain
Name |
DomainName |
DomainType |
Default |
work.com |
work.com |
Authoritative |
True |
House.com |
House.com |
authoritative |
False |
Toitsme.com |
Itsme.com |
Internalrelay |
False |
ToTelus.com |
Telus.com |
ExternalRelay |
false |
Get-TransportRule
Name |
State |
Priority |
Comments |
rule1 |
Enabled |
0 |
|
At Ex20073--just after its installation
Send Connectors: none
Transport Rules: none
Accepted Domains: none
Get-AcceptedDomain
Get-SendConnector
Get-TransportRule
Get-ReceiveConnector | fl Name,Bindings,Permission*,Enabled
Name: Default internal receive connector EX20073
Bindings: {0.0.0.0:25}
PermissionGroups: AnonymousUsers, ExchangeServers, Partners
Enabled: True
New-EdgeSubscription -FileName c:\edge.xml -Site 'Default_First_Site_Name'
Copy c:\edge.xml to Ex20071
At Ex20071:
new-EdgeSubscription -FileName 'C:\edge.xml' -Site 'Default-First-Site-Name' -CreateInternetSendConnector $true -CreateInboundSendConnector $true
EdgeSync requires that the Hub Transport servers in Active Directory site Default-First-Site-Name must be able to resolve the IP address for ex20073.work.com, and be able to connect to that host on ports 50636.
Start-Service "MSExchangeEdgeSync"
Start-EdgeSynchronization
Result: Success
Verifying the synchronization at ex20073
Test-EdgeSynchronization
Name: ex20073
LeaseHolder: EX20071
LeaseType: Option
ConnectionResult: Succeeded
FailureDetail:
LeaseExpiry: 3/15/2009 9:56:09 AM
LastSynchronized : 3/15/2009 8:56:09 AM
CredentialStatus: Synchronized
TransportServerStatus: Synchronized
TransportConfigStatus: Synchronized
AcceptedDomainStatus: Synchronized
SendConnectorStatus: Synchronized
MessageClassificationStatus: Synchronized
RecipientStatus: Synchronized
CredentialRecords: Number of credentials 6
Get-AcceptedDomain: synched
Name |
DomainName |
DomainType |
Default |
work.com |
work.com |
Authoritative |
True |
House.com |
House.com |
authoritative |
False |
Toitsme.com |
Itsme.com |
Internalrelay |
False |
ToTelus.com |
Telus.com |
ExternalRelay |
false |
Get-transportRule: not synched
Get-ReceiveConnector:not synched
Identity |
Bindings |
Enabled |
ex20073\Default internal receive connector EX20073 |
{0.0.0.0:25} |
True |
Get-SendConnector | fl Name,address*,DNS*,Smart*,source*
Name : edgesync - default-first-site-name to internet
AddressSpaces : {smtp:*;100}
DNSRoutingEnabled : True
SmartHosts : {}
SmartHostAuthMechanism : None
SmartHostsString :
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {}
Name : edgesync - inbound to default-first-site-name
AddressSpaces : {smtp:--;100}
DNSRoutingEnabled : False
SmartHosts : {--}
SmartHostAuthMechanism : ExchangeServer
SmartHostsString : --
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {}
The -- placeholder (AddressSpaces : {smtp:--;100}) for the inbound Send connector (edgesync - inbound to default-first-site-name) represents the authoritative and internal relay accepted domains for the Exchange organization. The -- placeholder represents work.com,house.com,itsme.com but not Telus.com external domain.
The -- placeholder (SmartHosts : {--}) represents all the Hub Transport servers (Ex20071 and Ex20072) that are located in the subscribed Active Directory site (default-first-site-name). If more than one Hub Transport server is located in the subscribed Active Directory site, inbound connections will be load balanced across the smart hosts.
The send connector for external relay domain must be manually created on ex20071:
$credential=get-credential
New-SendConnector -Name "To-telus.com" -Usage custom -AddressSpaces telus.com -SmartHosts 15.70.70.70 -SmartHostAuthMechanism BasicAuth -AuthenticationCredential $credential -SourceTransportServers ex20073 -DNSRoutingEnabled $False
Identity AddressSpaces Enabled
-------- ------------- -------
To-telus.com {smtp:telus.com;1} True
Start-EdgeSynchronization
The send connector: To-telus.com appears on Exchange Management Console of Ex20073. But the '*cost1' send connector still does not appear, because its source transport server is Ex20071 not Ex20073.
Get-SendConnector | fl Name,address*,DNS*,Smart*,source*
Name : *Cost1
AddressSpaces : {SMTP:*;1}
DNSRoutingEnabled : False
SmartHosts : {[70.79.160.209]}
SmartHostAuthMechanism : BasicAuth
SmartHostsString : [70.79.160.209]
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {EX20071}
Name : EdgeSync - Default-First-Site-Name to Internet
AddressSpaces : {smtp:*;100}
DNSRoutingEnabled : True
SmartHosts : {}
SmartHostAuthMechanism : None
SmartHostsString :
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {ex20073}
Name : EdgeSync - Inbound to Default-First-Site-Name
AddressSpaces : {smtp:--;100}
DNSRoutingEnabled : False
SmartHosts : {--}
SmartHostAuthMechanism : ExchangeServer
SmartHostsString : --
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {ex20073}
Name : To-telus.com
AddressSpaces : {smtp:telus.com;1}
DNSRoutingEnabled : False
SmartHosts : {[15.70.70.70]}
SmartHostAuthMechanism : BasicAuth
SmartHostsString : [15.70.70.70]
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {ex20073}
At Ex20074:
new-EdgeSubscription -FileName 'C:\edge2.xml' -Site 'Default-First-Site-Name'
copy the edge2.xml file to Ex20071;
At Ex20071:
new-EdgeSubscription -FileName 'C:\edge2.xml' -Site 'Default-First-Site-Name' -CreateInternetSendConnector $true -CreateInboundSendConnector $true
Get-SendConnector | fl Name,address*,DNS*,Smart*,source*
Name : *Cost1
AddressSpaces : {SMTP:*;1}
DNSRoutingEnabled : False
SmartHosts : {[70.79.160.209]}
SmartHostAuthMechanism : BasicAuth
SmartHostsString : [70.79.160.209]
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {EX20071}
Name : EdgeSync - Default-First-Site-Name to Internet
AddressSpaces : {smtp:*;100}
DNSRoutingEnabled : True
SmartHosts : {}
SmartHostAuthMechanism : None
SmartHostsString :
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {ex20074, ex20073}
Name : EdgeSync - Inbound to Default-First-Site-Name
AddressSpaces : {smtp:--;100}
DNSRoutingEnabled : False
SmartHosts : {--}
SmartHostAuthMechanism : ExchangeServer
SmartHostsString : --
SourceIPAddress : 0.0.0.0
SourceRoutingGroup : Exchange Routing Group (DWBGZMFD01QNBJR)
SourceTransportServers : {ex20074, ex20073}
Connection requests are load balanced across the subscribed Edge Transport servers.
Routing Outbound E-Mail to a Smart Host
At Ex20074:
new-EdgeSubscription -FileName 'C:\edge2.xml' -Site 'Default-First-Site-Name'
copy the edge2.xml file to Ex20071;
At Ex20071:
Get-EdgeSubscription | Remove-EdgeSubscription -confirm:$yes
new-EdgeSubscription -FileName 'C:\edge2.xml' -Site 'Default-First-Site-Name' -CreateInternetSendConnector $false -CreateInboundSendConnector $true
$credential=get-credential
New-SendConnector -Name "To-Internet" -Usage Internet -AddressSpaces * -SmartHosts 15.70.70.70 -SmartHostAuthMechanism BasicAuth -AuthenticationCredential $credential -SourceTransportServers ex20074 -DNSRoutingEnabled $False
Start-EdgeSynchronization
At Ex20073:
new-EdgeSubscription -FileName 'C:\edge1.xml' -Site 'Default-First-Site-Name'
copy the edge1.xml file to Ex20071;
new-EdgeSubscription -FileName 'C:\edge1.xml' -Site 'Default-First-Site-Name' -CreateInternetSendConnector $false -CreateInboundSendConnector $true
Start-EdgeSynchronization
Set-SendConnector -id 'To-Internet' -SourceTransportServers ex20073 ,ex20074
Mail flow for multiple sites
Inbound mail flow:
Albert@work.com is in Toronto Site.
outbound mail flow:
Albert@work.com sends mail out.
After edge subscription completes, all configuration must be run on internal exchange servers.
ADAM ADSI Edit tool -- port: 50389
Agent Log directory
\Program Files\Microsoft\Exchange Server\TransportRoles\Logs\AgentLog
Get-AgentLog | where { $_.reason -eq 'SCL' } | select MessageID,P1FromAddress
Backup Edge Transport configuration:
CD $ExScripts
.\ExportEdgeConfig.ps1 -cloneConfigData c:\edgeConfig.xml
Import the Edge Configuration data into new edge transport server:
.\ImportEdgeConfig.ps1 -cloneConfigData c:\edgeConfig.xml
Run Edge Subscription process.