Firewall Rules for a RIM Server in Exchange

A firewall is a computer programming protocol that you configure based on a set of rules specific to your organization or your personal preferences. The firewall prevents unauthorized people from accessing your data sources and your data connection. It also prevents unauthorized activity within the network that you created. The firewall secures your information and connections from unauthorized use and allows you to control what data comes in and goes out of the network. Protect a BlackBerry Research In Motion (RIM) server using a Microsoft Exchange firewall that you can configure based on your preferences.

Authentication on Two Sides

BlackBerry (RIM) services requires all users to acquire a secure connection from the initiating point (Enterprise Server) and the SRP (Server Relay Protocol) terminating point .

Create a secure initiating point for the BlackBerry Enterprise Server (BES). Configure a rule that allows the BES to initiate a Transfer Connection Protocol (TCP) that allows the server to communicate to the Server Relay Protocol (SRP) host. Configure the rule so the connection can only receive requests and not initiate any requests to the BES. Remove any restrictions on the authorized Internet Protocol addresses.

Configure the Exchange Server for static ports and open all the static ports. Open all network authentication ports to allow the domain controller to recognize the BES and allow the connection to proceed.

Configure the BES inside the firewall on the same switch as the Exchange mail server. This increases the overall security of the connection and protects the email activity from unauthorized access.