We are planning the move from Exchange On-premises to Exchange Hybrid and I have a few questions about the Edge Transport server and how it fits in.
The plan is to place an Edge Transport server in our DMZ so that incoming email from EOP will go via the Edge server before reaching the Exchange servers. This is to limit the exposure of our Exchange servers to the Internet
Does the Malware and Anti-Spam need to be enabled and configured on this edge server? Is there a recommendation for this?
We currently have a third party mail system that we use for email security and emails generated from servers on the DMZ are directed to this server and the email security server routes the emails either internally or to the Internet. This server will be going. Will we need an additional Edge transport server separate to the one used for Hybrid for this or can the Hybrid Edge transport server be used? I am not quite sure if the Edge transport server used for Hybrid can only be used for the Hybrid and nothing else.