Hi all,
I have just setup exchange 2013 and am trying to publish OWA, EAS and Outlook anywhere via TMG 2010 fully patched on server 2008r2.
TMG is setup as back firewall, the edge has its own firewall.
It goes like this:
Internet
|
Edge firewall (NAT)
|
DMZ (192.168.xxx.0/24) - perimeter
|
TMG (dual nic, one in DMZ and one in LAN)
|
LAN (172.23.xxx.0/24) Exchange 2013 servers (2 x servers running all services setup as DAG)
The routing between perimeter and lan is a route and not NAT, OWA on the exchange boxes is basic auth and this simply worked out of the box (I get the forefront form and then direct into OWA), no changes needed, but I cant get EAS or Outlook anywhere to work.
When I test using exchange connectivity analyser for EAS, it fails on the options command - the error clearly shows the internal URL of one of the exchange servers but the port number has been changed to 444.
On the exchange box there is a exchange backend website and this is bound to port 444, but the real client access is using the default website and is bound to port 443 with the correct certs setup.
Anyone have any ideas?