External ArcGIS Server Services in AGO Web Maps/External Applications

I have a story map that is hosted on one of our external web servers here https://maps.hillsboro-oregon.gov/LandUseGallery/index.html; it currently uses AGO-hosted services and I’d like to redirect the web maps used in the app to services from another external web server in the DMZ where we’ve installed ArcGIS Server 10.3.1.  On the external ArcGIS Server we’ve enabled SSL and the server has a CA signed cert, and it’s configured to pass traffic on both HTTP and HTTPS.  I am able to add secured https services to ArcGIS Online from our external ArcServer, add them to a web map and they’re visible when I’m on our internal network, but the services are not visible outside our network.  If I add one to a web map that’s available to everyone when I try to load the web map outside our network it just times out eventually.  If I look in the console when viewing the web map on our network I’m getting a 400 error for the service coming from the external ArcServer.  I believe the solution to my issue as far as replacing the services in our external story map is to install the web adaptor with our Maps site on our external web server, correct?  I’m also wondering if there’s anything additional to be done (configuration in IIS, or?) on the DMZ server where ArcGIS Server is installed?