Solved

Exchange Online and Office 365 firewall settings for internal and external access.

Posted on 2014-04-23
5
3,006 Views
Last Modified: 2014-05-25
I am preparing for Exchange Online to migrate all of our mailboxes to the cloud using a hybrid solution offered by microsoft. In that solution, they have stated a requirement to have an ADFS server and an DirSync server.

Now when I build our servers, all the ports are locked down by default by our hosting company. I am trying to keep this as secure as possible. I am assuming that ADFS needs to be externally facing. What ports will I need to open for the external connectivity.

Also what ports will i require for the internal connectivity between our internal servers.

Lastly, does the DirSync tool need external access and if so what ports are required internally and externally or does the DirSync just need to connect to the ADFS server from the Domain Controller?

 Please help! Newbie with Office 365.
0
Comment
Question by:MSSC_support
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 41

Expert Comment

by:Vasil Michev (MVP)
ID: 40017788
You can review all the URLs/IPs and Ports needed here:

http://technet.microsoft.com/en-us/library/hh852522.aspx

http://technet.microsoft.com/library/hh373144.aspx

Depending on which services you are going to use, you might not need some of those. Dirsync needs external access, on 443 (and 80). Use AD FS proxies for external access, the port is again 443.
0
 

Accepted Solution

by:
MSSC_support earned 0 total points
ID: 40019527
Thats great, how about the internal ports I will need?
0
 
LVL 41

Expert Comment

by:Vasil Michev (MVP)
ID: 40019729
For AD FS you need 443, dirsync uses LDAP ones.
0
 

Author Comment

by:MSSC_support
ID: 40078016
Got it. Thanks All.
0
 

Author Closing Comment

by:MSSC_support
ID: 40089266
The site had all the ports i required.
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Adoption of Microsoft’s Enterprise Mobility and Security solution and Office 365 will re-order the File Sync and Share market Microsoft has stated that its Enterprise Mobility + Security (EMS) is the fastest growing product in the history of the …
This article describes how to import an Outlook PST file to Office 365 using a third party product to avoid Microsoft's Azure command line tool, saving you time.
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question