Microsoft Corporation. All Rights Reserved.

Microsoft Corporation. All Rights Reserved.

Michael Van Horenbeeck
Technology Consultant @ Xylos
Did you already work with
or install Exchange 2013
(in a lab)?
Architecture
Internal Network
Phone system
(PBX or VOIP)
Web
browser
Outlook (remote
user)
Mobile phone
Line of business application
Mailbox
Stores mailbox and
public folder items
Unified Messaging
Voice mail and
voice access
Client Access
Client connectivity
Web services
Outlook (local user)
Layer 7 LB


AD
External
SMTP
servers
Edge Transport
Routing and
AV/AS
Hub Transport
Routing and policy
Forefront Online
Protection for
Exchange
Copyright Microsoft Corporation
Exchange deployments can be
complicated
Load balancing is difficult and can
require expensive solutions
When dedicated server roles are
deployed, hardware can go unutilized
or under-utilized
Too many namespaces required
Copyright Microsoft Corporation
Use Building Blocks to facilitate
deployments at all scales from self-
hosted, small organizations to Office
365
Server role evolution
Network layer improvements
Versioning and inter-op principles
Internal Network
Web
browser
Outlook (remote
user)
Mobile phone
LOB Application
External
SMTP
servers
Exchange 2010
Edge Transport
Forefront Online
Protection for
Exchange
CAS
(Array)
MBX
(DAG)
Outlook (local user)
L
a
y
e
r

4

l
o
a
d

b
a
l
a
n
c
i
n
g

Phone system
(PBX or VOIP)
Protocols,
Server Agents
Business Logic
Storage
EWS
RPC CA
Transport
Assistants
MRS
MRSProxy
EWS
RPC CA
Transport
Assistants
MRS
MRSProxy
Server1 (V
n
) Server2 (V
n+1
)
XSO
MailItem
Other API CTS
Store
ESE
Content
index
File system
XSO
MailItem
Other API CTS
Store
ESE
Content
index
File system
SMTP
MRS proxy
protocol
EWS protocol
Custom WS
Banned

E2010

AuthN, Proxy,
Re-direct
Protocols, API,
Biz-logic
Assistants, Store, CI
Exchange 2010
Architecture
AuthN, Proxy,
Re-direct
Store, CI
Protocols, Assistants,
API, Biz-logic
Exchange 2013
Architecture
Client Access
Mailbox
Client Access
Hub Transport,
Unified Messaging
Mailbox
Hardware
Load Balancer
L4 LB
L7 LB
Architecture
Load Balancer
MDB
HTTP Proxy
IIS
Client
Access
RPC CA
Mailbox
IIS
RPS
OWA, EAS, EWS, ECP,
OAB
POP,
IMAP
SMTP UM
POP
IMAP
Transport UM
SMTP
POP, IMAP HTTP
MailQ
RpcProxy
SMTP
SIP
Redirect
SIP + RTP
POP/IMAP
Outlook Web App Outlook EAS EAC PowerShell
Geographical DNS Solution
Sue
(somewhere in NA)
DNS Resolution
DAG
VIP #1 VIP #2
Sue
(traveling
in APAC)
DNS Resolution via Geo-DNS
Round-Robin between # of VIPs
DAG
VIP #3 VIP #4
mail.contoso.com
Round-Robin between # of VIPs
Architecture
Front-End Transport Pipeline
SMTP Send SMTP Receive
Protocol
Agents
SMTP to MBX 2013 SMTP from MBX 2013
External SMTP External SMTP
Hub Selector
box recipients, select MBX server in closest delivery group, factoring
in site proximity
23
Architecture
Copyright Microsoft Corporation
Managed Store
IOPS reductions
Larger mailbox support
Modern public folders
New search infrastructure
0
0,2
0,4
0,6
0,8
1
Exchange 2003 Exchange 2007 Exchange 2010 Exchange 2013
DB IOPS/Mailbox
Exchange 2003
Exchange 2007
Exchange 2010
Exchange 2013
+97%
Reduction!
1 Day 150 11 MB
1 Month 3300 242 MB
1 Year 39000 2.8 GB
2 Years 78000 5.6 GB
4 Years 156000 11.2 GB
MBX
2013
CAS2013
MBX
2013
MBX
2013
Public logon
Private
logon
Public logon
Content
Mailbox
Hierarchy
Mailbox
Copyright Microsoft Corporation
Uses FAST

Significantly improved query
performance

Significantly improved indexing
performance
FAST Primer
FAST Core
Catalog
CTS
Incoming Documents
Filter
Word
Break
Content
XForm
MARS
Writer
Incoming Queries
CTS Flow
IMS
Content
XForm
Query Parse
IMS Flow
Mailbox
DB Idx
Transport
Transport CTS
Mailbox
Store
DB
Index Node
Idx
ExSearch
CTS
Read Content
Log Log
Architecture
Transport Pipeline
SMTP to MBX Transport Submission SMTP from MBX Transport Delivery
SMTP SMTP
Delivery Agents for
other protocols
Submission
Queue
Delivery Queue
Delivery Queue
Pickup/Replay
Categorizer
Routing
Agents
SMTP Send
SMTP Receive
Protocol
Agents
Mailbox Transport Submission Mailbox Transport Delivery
Mailbox Transport Pipeline
Store Driver Deliver
MBX Deliver
Agents
SMTP Send SMTP Receive
Hub Selector (Router)
Store Driver Submit
MBX
Assistants
MBX Submit
Agents
MAPI MAPI
Mailbox Store
SMTP to Transport Service SMTP from Transport Service
If you have a stretched DAG, you also have transport site resilience
Resubmits due to transport DB loss or MDB *over are fully automatic and
do
45
DAG
MBX1
MBX Transport
Transport
DB2 DB1
MBX2
MBX Transport
Transport
DB2 DB1 DB1 DB1
MAPI MAPI
SMTP
Protocol Flows
Exchange Server 2010 Coexistence - Autodiscover (External clients)
autodiscover.contoso.com
PROXY
Clients
E2010/E2007 MBX
E2010 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2010 MBX
E2010 CAS E2010 CAS
PROXY
CAS
2010
handles
request
CAS
2010
handles
request
Exchange Server 2007 Coexistence - Autodiscover (External clients)
autodiscover.contoso.co
m
PROXY
Clients
E2010/E2007 MBX
E2007 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2007 MBX
E2007 CAS E2007 CAS
MBX
2013
handles
request
Exchange Server 2010 Coexistence - Autodiscover (Internal clients)
Internal LB namespace
PROXY
Outlook Clients
E2010/E2007 MBX
E2010 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2010 MBX
E2010 CAS E2010 CAS
PROXY
CAS
2010
handles
request
CAS
2010
handles
request
Lookup SCP records in AD
Exchange Server 2007 Coexistence - Autodiscover (Internal clients)
Internal LB namespace
Outlook Clients
E2010/E2007 MBX
E2007 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2007 MBX
E2007 CAS E2007CAS
MBX
2013
handles
request
Lookup SCP records in AD
Protocol Flows
(2007)
Exchange Server 2007 and 2010 Coexistence - Outlook Anywhere
mail.contoso.com
HTTP
PROXY
Clients
E2010/E2007 MBX
E2010/E2007 MBX
Internet facing site
E2013 MBX
E2013 CAS
RPC/HTTP
Intranet site
E2010/E2007 MBX
Enable OA
Client Auth: Basic
IIS Auth: Basic
E2010/E2007 CAS
Enable OA
Client Auth: Basic
IIS Auth: Basic
E2010/E2007 CAS
HTTP
PROXY
2. Client Settings
Make 2007/2010 client settings the
same as 2013 Server
3. IIS Authentication Methods
Must include NTLM
RPC
NTLM NTLM
Enable OA
Client Auth: Basic
IIS Auth: Basic
RPC
RPC/HTTP
1. Enable Outlook Anywhere
On intranet 2007/2010 servers
Protocol Flows
Exchange Server 2010 Coexistence - OWA
mail.contoso.com
Layer 4 LB
HTTP
PROXY
OWA
E2010/E2007 MBX
E2010 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2010 MBX
E2010 CAS E2010 CAS
HTTP
PROXY
Same
site
proxy
request
Cross
site
proxy
request
Auth
2013
logon
page
europe.mail.contoso.com
Layer 7 LB
Auth
2010
logon
page
RPC RPC
Exchange Server 2007 Coexistence - OWA
mail.contoso.com
Layer 4 LB
OWA
E2010/E2007 MBX
E2007 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2007 MBX
E2007 CAS E2007 CAS
HTTP
PROXY
Auth
2007
logon
page
Auth
2013
logon
page
europe.mail.contoso.com
Layer 7 LB
Auth
2007
logon
page
RPC RPC
legacy.mail.contoso.co
m
Layer 7 LB
Protocol Flows
Exchange Server 2010 Coexistence EAS/EWS
Layer 4 LB
mail.contoso.com
HTTP
PROXY
EAS/EWS
E2010/E2007 MBX
E2010 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2010 MBX
E2010 CAS E2010 CAS
HTTP
PROXY
Same
site
proxy
request
Cross
site
proxy
request
Layer 7 LB
europe.mail.contoso.com
Exchange Server 2007 Coexistence EAS, EWS
Layer 4 LB
mail.contoso.com
EAS, EWS
E2010/E2007 MBX
E2007 MBX
Internet facing site
E2013 MBX
E2013 CAS
Intranet site
E2007 MBX
E2007 CAS E2007 CAS
Layer 7 LB
europe.mail.contoso.com
Layer 7 LB
legacy.mail.contoso.com
Namespace planning
A Single External Namespace Example
Geographical DNS Solution
Sue
(somewhere in NA)
DNS Resolution
DAG
VIP #1 VIP #2
Sue
(traveling
in APAC)
DNS Resolution via Geo-DNS
Round-Robin between # of VIPs
DAG
VIP #3 VIP #4
mail.contoso.com
Round-Robin between # of VIPs
Multiple Namespace Example
Sue
(somewhere
in NA)
DAG
VIP #1 VIP #2
Sue
(traveling
in APAC)
Round-Robin
between # of VIPs
DAG
VIP #3 VIP #4
na.contoso.com emea.contoso.com
Sue
(somewhere
in NA)
Sue
(traveling
in APAC)
Round-Robin
between # of VIPs
na.contoso.local emea.contoso.local
Deployment
SP3
E2010
CAS
E2010
HUB
E2010
MBX
Clients
Internet facing site Upgrade first
autodiscover.contoso.com
mail.contoso.com
Intranet site
Exchange 2010
Servers
SP3
1. Prepare
Install Exchange 2010 SP3 across the ORG
Validate existing Client Access using ExRCA and built-
in Test cmdlets
Prepare AD with E2013 schema
4. Switch primary namespace to Exchange 2013 CAS
E2013 fields all traffic, including traffic from
Exchange 2010 users
Validate using Remote Connectivity Analyzer
5. Move Mailboxes
Build out DAG
Move E2010 users to E2013 MBX
6. Repeat for additional sites
2. Deploy Exchange 2013 servers
Install both E2013 MBX and CAS servers
SP3
SP3
E2013
CAS
E2013
MBX
3. Obtain and Deploy Certificates
Obtain and deploy certificates on E2013 Client
Access Servers
1
2
4
3
5
6
RU
E2007
SP3
CAS
E2007
SP3
HUB
E2007
SP3
MBX
Clients
Internet facing site Upgrade first
autodiscover.contoso.com
mail.contoso.com
Intranet site
Exchange 2007
Servers
RU
1. Prepare
Install Exchange 2007 SP3 + RU across the ORG
Prepare AD with E2013 schema and validate
5. Switch primary namespace to Exchange 2013 CAS
Validate using Remote Connectivity Analyzer
6. Move Mailboxes
Build out DAG
Move E2007 users to E2013 MBX
7. Repeat for additional sites
2. Deploy Exchange 2013 servers
Install both E2013 MBX and CAS servers
RU
RU
E2013
CAS
E2013
MBX
3. Create Legacy namespace
Create DNS record to point to legacy E2007 CAS
4. Obtain and Deploy Certificates
Obtain and deploy certificates on E2013 Client Access
Servers configured with legacy namespace, E2013
namespace and Autodiscover namespace
Deploy certificates on Exchange 2007 CAS
legacy.contoso.com
3
1
2
5
4
6
7
SP/RU
E2010
or 2007
CAS
E2010
or 2007
HUB
E2010
or 2007
MBX
Clients
Internet facing site Upgrade first
autodiscover.contoso.com
mail.contoso.com
Intranet site
Exchange 2010
or 2007 Servers
SP/RU
1. Prepare
Install Exchange SP and/or updates across the ORG
Prepare AD with E2013 schema and validate
5. Switch primary namespace to Exchange 2013 CAS
6. Move Mailboxes
7. Repeat for additional sites
3. Create Legacy namespace
4. Obtain and Deploy Certificates
1
2. Deploy Exchange 2013 servers
Install both MBX and CAS Servers
MBX performs PowerShell commands
CAS is proxy only
Exchange 2013 Setup
GUI or command line
In-place upgrades are not supported
Updated to reflect Exchange 2013 roles

Parameters
New required parameter for license terms
acceptance
Install
Setup.exe /mode:install
/roles:clientaccess
Setup.exe /mode:install
/roles:mailbox
Setup.exe /mode:install
/roles:ManagementTools

Other required parameter
- /IAcceptExchangeServerLicenseTerms

1 2
Certificates
1 4
1 5
1 5