Firewall config for ActiveSync Push

Forum|Forum|11 years ago
September 3, 2014
2 replies
10526 views

Hello, I' ve been seeing errors from MS Exchange 2003 related to a firewall setting that I' m not sure how to modify. The recommended configuration described in the [link=http://support.microsoft.com/kb/905013/en-us]article[/link] don' t translate to my FortiGate very well. Has anyone else had to make this change? Thanks. Source: Server ActiveSync Event ID: 3033 The average of the most recent [200] heartbeat intervals used by clients is less than or equal to [540]. Make sure that your firewall configuration is set to work correctly with Exchange ActiveSync and direct push technology. Specifically, make sure that your firewall is configured so that requests to Exchange ActiveSync do not expire before they have the opportunity to be processed. For more information about how to configure firewall settings when using Exchange ActiveSync, see Microsoft Knowledge Base article 905013, " Enterprise Firewall Configuration for Exchange ActiveSync Direct Push Technology" (http://go.microsoft.com/fwlink/?linkid=3052&kbid=905013).

rocknob

New Member

We have generally not needed to make any special changes to the firewall rules for ActiveSync. Just setup a VIP using 443 pointing to the internal IP of your mail server.

generaltabAuthor

New Member

Thanks, rocknob. May I ask you to elaborate on this setup? Currently, I have a VIP mapping simply from my mail server' s external IP to my mail server' s internal IP with no port forwarding. I suspect this doesn' t really accomplish anything. Are you suggesting I do this instead? External IP: xxx.xx.xxx.xx Mapped IP: 192.168.1.7 External service port: 443 Map to port: 443

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded