Looking at the dangers and risks of doing this - what sort of attacks can be launched againt the server? How can you reduce these risks?
It is a Windows 2008 server running Exchange 2007 on a LAN. The firewall is a checkpoint firewall which locks down to only web browsing, pop3/smtp to the exchange server.
We open a port for HTTPS, natting an external address to the internal IP.
I know it is not the best option for supplying Client Server portion to the users, but say it was the only way.