That's a pretty detailed and specific question to your environment that probably won't get much help in a forum.
All the EWS folks I've dealt with in support have been reasonably sharp. I'd strongly suggest calling support and opening a ticket so they can see your config via a remote support session and understand what you're trying to do better.
Hi anonymos, if your traffic is MAPI instead of SMTP then the appliance won't listen to it, it will simply do nothing (not even blocking traffic).
did you add a new interception port or something similar into the EWS protocols config page?