What's the best way to configure Exchange 2013 Client Access role for Internet facing?
I am thinking of using TMG with reverese proxy. Is TMG or some other reverese proxy the best way? or does Exchange 2013 have some sort of security that would allow me to simply NAT to the CAS server from the Internet? What's the recommended way of doing this? Can you point me to documentation that recommends a secure topology? Thanks
The opptions as I see it:
1. NAT to CAS from the Internet
2. Reverse Proxy from the Internet using TMG
3. Publish CAS on TMG and authenticate users on TMG before getting to CAS.
4. Are there other options?
Mike Momjian
Infrastructure Architect