ActiveSync only works on WAN and not LAN

geca

Hi,

Before the installation of pfSense, the on-premises Exchange server was accessible with an iPhone or Android using ActiveSync. This was done by entering a port forwarding entry in the old firewall as follows:

Source IP: *
External port: 443
Destination IP: 192.168.0.12
Internal port: 443

On the phone, we configured the ActiveSync account to use the public IP address for the Exchange server. The ActiveSync worked on the phone whether it was on the LAN or WAN.

I recently installed pfSense 2.5.2 to replace the old firewall and entered the same port forwarding for ActiveSync. Now the phone can access the Exchange server only when it is on the WAN side. How can I make the configuration work as in the past?

Regards,

viragomann

Obviously you are using pfSense for DNS resolution now.

@geca said in ActiveSync only works on WAN and not LAN:

On the phone, we configured the ActiveSync account to use the public IP address for the Exchange server.

You use the IP to access the server?
If you use its public FQDN you could add a host override to the DNS Resolver.
But when using the IP, you have to go with NAT reflection. You can enable it in the port forwarding rule. If client and server are within the same network segment you might need to enable the proxy mode.

noplan

@viragomann

Host override should do the trick for LAN
Fqdn works on LAN and outside