Exchange 2016 ActiveSync in Edge Server

exchange dmz activesync exchange-server

Exchange Edge Transport servers only do mail flow (SMTP) and anti-spam protection.

If you want publish ActiveSync to the internet, then there are only two options for you:

  • forward HTTP and HTTPS ports on the firewall directly to Exchange servers (which you don't want to do)
  • install a reverse web proxy in your DMZ. Microsoft IIS + ARR or Microsoft WAP support HTTP(S) proxying and are free with Server OS. But any reverse web proxy will do.

I don't believe there is an official Microsoft documentation on how to configure IIS ARR or WAP to publish Exchange in DMZ. But you can easily find several unofficial how-to-s out there

Related

Redhat: Enabling proxy for specific IP addresses only
What is service "ismserver" listening on port 9500?
Can I install php8.0 on Ubutnu 16.04
HTTPS/SSL not working with Cups
nohup daemon process dies when terminal is close
Postfix and Subdomains
Using a Group Managed Service Account (gMSA) for a scheduled task
NGINX - Serving a create-react-app application on one port and my api on another port
Powershell: start and stop flask server
How to run minikube start as a linux service on startup?
rm: cannot remove - Permission denied
ipmptool get the Board Serial using raw command