Probably I'll have to use LDAP, but this solution won't work if people are outside of the firm, since we don't allow ldap connections from the cloud.

I'd prefer a funambol solution.

Me created LDAP server only for addressbook and its contains above 2000 contacts.Internally its working fine in outlook/evolution/thunderbird...etc.I think if we change to LDAPS and make a portforward in firewall,we can access addressbook through internet.I didn't check this scenario...!!!!!!But the problem is mobile users can't access GAL and any ldap server..