THE INFORMATION IN THIS ARTICLE APPLIES TO:
DISCUSSION
This article discusses the static URLs that are used by Mail Express. It is recommended that you protect the internal-only URLs in the table below from external (e.g. Internet) access using a firewall. Typically this may be accomplished by adding DENY rules for the URLs identified as "Internal Only" in the table below.
Mail Express Server URLs
The Mail Express Server exposes the following static URLs:
URL
|
Description
|
Recommended Access
|
https://<host>/svc
|
Web services for Outlook Add-In
|
Internal Only
|
https://<host>/admin
|
Admin Home Page
|
Internal Only
|
https://<host>/adminLogin
|
Admin Login Page
|
Internal Only
|
https://<host>/help/AdminUser/*
|
Admin Help Guide
|
Internal Only
|
https://<host>/login
|
Internal/External Login Page
|
Internal, External
|
https://<host>/help/WebUser/*
|
User Help Guide
|
Internal, External
|
https://<host>/pickup
|
Package Pick-up Page
|
Internal, External
|
https://<host>/dropoff
|
Package Drop-off Page
|
Internal, External
|
https://<host>/logout
|
Logout Page
|
Internal, External
|
https://<host>/internal
|
Internal Web Page
|
Internal, External
|
https://<host>/reply |
Reply Page |
Internal, External |
The remaining URLs used to access the system are dynamically generated during operation and are relative to each specific client session. The dynamic URLs are used for both internal and external dynamically generated pages and will be relative to the root URL https://<host>/<dynamic portion>. As such, when configuring firewall rules you must not prevent external access to https://<host>/* so that the external portals may function properly. Typically this may be accomplished by only using DENY rules to prevent access to the URLs identified as "Internal Only" in the table above.