exchange 2016 ECP block external RRS feed

  • Question

  • Hi 

    We have port 443 open to our exchange 2016 server from the outside so we can have a few of our mobile phone connected to our exchange server to get email on these devices using active sync. However using this method makes the ECP and OWA exposed to the outside. I tried doing a ip restriction using IIS by only allowing the internal subnet then under feature setting and set the access for unspecified clients to deny and deny action type to Not Found. 

    After restarting IIS or the default website, this is still available on the outside. Am I doing something wrong as that is what other sites say to do to block this access externally or is there another method so we can only allow active Sync available from the outside?

    Monday, December 23, 2019 12:15 AM

All replies