Exchange 2013 HTTP Virtual Service Recommended Settings (Optional)
- Last Updated: July 29, 2024
- LoadMaster
- LoadMaster LTSF
- Documentation
| API Parameter | API Value | WUI Field Name | WUI Field Value | Use with Template |
|---|---|---|---|---|
| HTTP Redirect | ||||
| port | 80 | Port | 80 | All |
| prot | tcp | Protocol | tcp | All |
| nickname | Exchange%20Redirect | Service Name (Optional) | Exchange Redirect | All |
| ForceL7 | 1 | Force L4 | Disabled | All |
| Errorcode | 302 | Error Code | 302 Found | All |
| ErrorUrl | https:%5C%2F%5C%2F%25h%25s | Redirection URL | https:\/\/%h%s | All |
| CheckType | none | Real Server Check Method | None | |
| Content Rules | ||||
| Authentication Proxy | ||||
| name | Authentication_Proxy | Rule Name | Authentication_Proxy | ESP Enabled |
| matchtype | Regex | Match Type | Regular Expression | ESP Enabled |
| pattern | %2F%5E%5C%2Flm_auth_proxy%2A%24%2F | Match String | /^\/lm_auth_proxy*$/ | ESP Enabled |
| Nocase | 1 | Ignore Case | Enabled | ESP Enabled |
| ActiveSync | ||||
| Name | ActiveSync | Rule Name | ActiveSync | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| pattern | %2F%5E%5C%2Fmicrosoft-server-activesync.%2A%2F | Match String | /^\/microsoft-server-activesync.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| Autodiscover | ||||
| name | Autodiscover | Rule Name | Autodiscover | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| pattern | %2F%5E%5C%2Fautodiscover.%2A%2F | Match String | /^\/autodiscover.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| ECP | ||||
| name | ECP | Rule Name | ECP | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| Pattern | %2F%5E%5C%2Fecp.%2A%2F | Match String | /^\/ecp.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| EWS | ||||
| name | EWS | Rule Name | EWS | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| Pattern | %2F%5E%5C%2Fews.%2A%2F | Match String | /^\/ews.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| MAPI | ||||
| name | MAPI | Rule Name | MAPI | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| Pattern | %2F%5E%5C%2Fmapi.%2A%2F | Match String | /^\/mapi.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| OAB | ||||
| name | OAB | Rule Name | OAB | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| Pattern | %2F%5E%5C%2Foab.%2A%2F | Match String | /^\/oab.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| OWA | ||||
| name | OWA | Rule Name | OWA | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| Patterns | %2F%5E%5C%2Fowa.%2A%2F | Match String | /^\/owa.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| PowerShell | ||||
| name | powershell | Rule Name | powershell | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| Pattern | %2F%5E%5C%2Fpowershell.%2A%2F | Match String | /^\/powershell.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| RPC | ||||
| name | RPC | Rule Name | RPC | All |
| matchtype | Regex | Match Type | Regular Expression | All |
| Pattern | %2F%5E%5C%2Frpc.%2A%2F | Match String | /^\/rpc.*/ | All |
| Nocase | 1 | Ignore Case | Enabled | All |
| Main Virtual Service | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| VStype | http | Service Type | HTTP-HTTP/2-HTTPS | All |
| nickname | Exchange%20HTTPS%20 Offloaded | Service Name (Optional) | Exchange HTTPS Offloaded | Create Unique Name |
| ForceL7 | 1 | Force L4 | Disabled | All |
| Transparent | 0 | Transparency | Disabled | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| SSLAcceleration | 1 | SSL Acceleration | Enabled | All |
| SSLReencrypt | 0 or 1 | Reencrypt | Disabled or Enabled | 0 for Offload 1 for Reencrypt |
| TLSType | 1 | Supported Protocols | TLS1.0, TLS1.1, TLS1.2, and TLS1.3 (Enabled) | All |
| CipherSet | BestPractices | Cipher Set | BestPractices | All |
| Tls13CipherSet | TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_AES_128_GCM_SHA256, TLS_AES_128_CCM_8_SHA256, TLS_AES_128_CCM_SHA256 | TLS1.3 Ciphersets | TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_AES_128_GCM_SHA256, TLS_AES_128_CCM_8_SHA256, and TLS_AES_128_CCM_SHA256 | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| Sub Virtual Service | ||||
| Authentication Proxy | ||||
| port | 443 | Port | 443 | ESP Enabled |
| prot | tcp | Protocol | tcp | ESP Enabled |
| Nickname | Authentication%20Proxy | Service Name (Optional) | Authentication Proxy | ESP Enabled |
| Errorcode | 503 | Error Code | 503 Service Unavailable | ESP Enabled |
| ErrorUrl | Endpoint%20not%20available | Redirection URL | Endpoint not available | ESP Enabled |
| CheckType | None | Real Server Check Method | None | ESP Enabled |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 2 | Client Authentication Mode | Form Based | ESP Enabled |
| OutputAuthMode | 2 | Server Authentication Mode | Form Based | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2F%2A | Allowed Virtual Directories | /* | ESP Enabled |
| SingleSignOnMessage | Please%20enter%20your%20Exchange%20credentials | SSO Greeting Message | Please enter your Exchange credentials | ESP Enabled |
| ActiveSync | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | ActiveSync | Service Name (Optional) | ActiveSync | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Fmicrosoft-server-activesync%2Fhealthcheck.htm | URL | /microsoft-server-activesync/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 1 | Client Authentication Mode | Basic Authentication | ESP Enabled |
| OutputAuthMode | 1 | Server Authentication Mode | Basic Authentication | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Fmicrosoft-server-activesync%2A | Allowed Virtual Directories | /microsoft-server-activesync* | ESP Enabled |
| Autodiscover | ||||
| Port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | Autodiscover | Service Name (Optional) | Autodiscover | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Fautodiscover%2Fhealthcheck.htm | URL | /autodiscover/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 0 | Client Authentication Mode | Delegate to Server | ESP Enabled |
| OutputAuthMode | 0 | Server Authentication Mode | None | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Fautodiscover%2A | Allowed Virtual Directories | /autodiscover* | ESP Enabled |
| ECP | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | ECP | Service Name (Optional) | ECP | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Fecp%2Fhealthcheck.htm | URL | /ecp/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 2 | Client Authentication Mode | Form Based | ESP Enabled |
| OutputAuthMode | 2 | Server Authentication Mode | Form Based | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Fecp%2A | Allowed Virtual Directories | /ecp* | ESP Enabled |
| SingleSignOnMessage | Please%20enter%20your%20Exchange%20credentials | SSO Greeting Message | Please enter your Exchange credentials | ESP Enabled |
| EWS | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | EWS | Service Name (Optional) | EWS | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Fews%2Fhealthcheck.htm | URL | /ews/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 0 | Client Authentication Mode | Delegate to Server | ESP Enabled |
| OutputAuthMode | 0 | Server Authentication Mode | None | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Fews%2A | Allowed Virtual Directories | /ews* | ESP Enabled |
| MAPI | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | MAPI | Service Name (Optional) | MAPI | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Fmapi%2Fhealthcheck.htm | URL | /mapi/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 0 | Client Authentication Mode | Delegate to Server | ESP Enabled |
| OutputAuthMode | 0 | Server Authentication Mode | None | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Fmapi%2A | Allowed Virtual Directories | /mapi* | ESP Enabled |
| OAB | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | OAB | Service Name (Optional) | OAB | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Foab%2Fhealthcheck.htm | URL | /oab/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 0 | Client Authentication Mode | Delegate to Server | ESP Enabled |
| OutputAuthMode | 0 | Server Authentication Mode | None | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Foab%2A | Allowed Virtual Directories | /oab* | ESP Enabled |
| OWA | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | OWA | Service Name (Optional) | OWA | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Fowa%2Fhealthcheck.htm | URL | /owa/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 2 | Client Authentication Mode | Form Based | ESP Enabled |
| OutputAuthMode | 2 | Server Authentication Mode | Form Based | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Fowa%2A | Allowed Virtual Directories | /owa* | ESP Enabled |
| ExcludedDirectories | %2Fowa%2Fguid%40smtpdomain%2A | Pre-Authorization Excluded Directories | /owa/guid@smtpdomain* | ESP Enabled |
| SingleSignOnMessage | Please%20enter%20your%20Exchange%20credentials | SSO Greeting Message | Please enter your Exchange credentials | ESP Enabled |
| Logoff | %2Fowa%2Flogoff.owa | /owa/logoff.owa | ESP Enabled | |
| PowerShell | ||||
| port | 443 | port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | PowerShell | Service Name (Optional) | PowerShell | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Fpowershell%2Fhealthcheck.htm | URL | /powershell/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 0 | Client Authentication Mode | Delegate to Server | ESP Enabled |
| OutputAuthMode | 0 | Server Authentication Mode | None | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Fpowershell%2A | Allowed Virtual Directories | /powershell* | ESP Enabled |
| RPC | ||||
| port | 443 | Port | 443 | All |
| prot | tcp | Protocol | tcp | All |
| Nickname | RPC | Service Name (Optional) | RPC | All |
| SubnetOriginating | 1 | Subnet Originating Requests | Enabled | All |
| Persist | None | Persistence Options | None | All |
| Schedule | lc | Scheduling Method | least connection | All |
| Idletime | 1800 | Idle Connection Timeout | 1800 | All |
| CheckPort | 443 | Checked Port | 443 | All |
| CheckType | https | Real Server Check Method | HTTPS Protocol | All |
| CheckUrl | %2Frpc%2Fhealthcheck.htm | URL | /rpc/healthcheck.htm | All |
| CheckUse1.1 | 0 | Use HTTP/1.1 | Disabled | All |
| CheckUseGet | 1 | HTTP Method | GET | All |
| EspEnabled | 1 | Enable ESP | Enabled | ESP Enabled |
| ESPLogs | 7 | ESP Logging | User Access, Security, and Connection (Enabled) | ESP Enabled |
| InputAuthMode | 0 | Client Authentication Mode | Delegate to Server | ESP Enabled |
| OutputAuthMode | 0 | Server Authentication Mode | None | ESP Enabled |
| AllowedHosts | Mail.example.com%20autodiscover.example.com | Allowed Virtual Hosts | Mail.example.com autodiscover.example.com | ESP Enabled |
| AllowedDirectories | %2Frpc%2A | Allowed Virtual Directories | /rpc* | ESP Enabled |