For security purposes, we'll like to shutdown port 443/80 that is open from the internet to our onpremise Exhybrid servers. All mailboxes are currently on Exchange Online and the Exbyrid servers serves for Central mail flow only (DLP). However
autodiscover is currently points to the Exhybrid servers and therefore we have HTTPS/HTTP ports opened from the internet to those servers. Can we shut those ports down from the internet? Would activesync still work? Or would users just have to manually
enter their activesync hostname, etc? Or should we re-direct autodiscover to O365? Please help with your suggestions.
ms