Sorry for this basic question but I'm not finding it with searches... I've installed Exchange 2010 from media containing SP1. I've got a CAS/HUB server and two DAG servers. Now I want to work on getting Activesync established for Internet based access to Windows Mobile phones so I've set up a server out in a DMZ. What role does Activesync piggyback on or need to reach in to my "secured" environment?

What server did you put in the DMZ? It is not supported to put an Exchange CAS in a DMZ, and it isn't a good idea, either. If you're going to put any server (save for Edge, which doesn't do anything for Activesync), it should be a TMG server or the like.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

Activesync runs off the CAS server which should be internal and not in a DMZ and it is enabled by default. You could use TMG to secure your environment more and add SSL for ActiveSync. http://technet.microsoft.com/en-us/library/bb266938.aspx http://araihan.wordpress.com/2010/04/09/how-to-publish-exchange-activesync-in-forefront-tmg-2010/DJ Grijalva | MCITP: EMA 2007/2010 SPA 2010 | www.persistentcerebro.com

What server did you put in the DMZ? It is not supported to put an Exchange CAS in a DMZ, and it isn't a good idea, either. If you're going to put any server (save for Edge, which doesn't do anything for Activesync), it should be a TMG server or the like. Ed Crowley MVP "There are seldom good technological solutions to behavioral problems." I put a 2008R2 server in the DMZ... anticipating some Exchange role to be installed to shuttle traffic between my internal server and the big bad Internet. So in reality, I just need to expose the CAS server service port for Activesync to the Internet by poking a hole in the firewall?

Yes port 80\443 open directly to CAS if you're not planning on putting a proxy in front (uag\tmg) Exchange Network Port Reference http://technet.microsoft.com/en-us/library/bb331973.aspxJames Chong MCITP | EA | EMA; MCSE | M+, S+ Security+, Project+, ITIL msexchangetips.blogspot.com

I think that's what I said.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."