I'm looking for a way to restrict certain users to accessing OWA from the local LAN only. The other users need to keep their ability to log in from wherever they are. I'm running a 2003 SBS server and do NOT have ISA server. I use a router with a firewall to forward port 443 to my exchange box from the internet, that all works fine. How can I make sure that certain 'restricted users' can ONLY log in to OWA when on the local LAN? Can i make a second OWA virtual server or something like that? The restricted users need to be able to send mail outside the organisation. Thank you for your thoughts!