As many of you that have experience with Exchange 2013 know, Microsoft for some reason left it so that your ECP logon page is available to the outside world with no real solution to fixing that. I have disabled the ECP on my mail servers via powershell and then stood up an another server that is not outward facing and I currently use that for ECP access. Problem is that with my outward facing mail servers, OWA is also unavailable as a result of disabling the ECP on those servers.
So I'm wondering if anyone has used their Load Master WAF to restrict external access to your Exchange 2013 ECP while leaving access to OWA in tact and how did you do it?
Thanks in advance!