Re: Exchange 2003 SP2 Relay Configuration
- From: "Rich Matheisen [MVP]" <richnews@xxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 02 Oct 2007 20:44:31 -0400
Ron <Ron@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
We are currently using exchange 2003 SP2 on a Windows server 2003
system. I notice emails that are in our outbound queue that I believe are
spam or emails being relayed thru our system. They all have postmaster as the
sender but never make it out of our queue thus I manually have to delete
them.
That sounds like they're just NDRs. Have you enabled recipient
filtering on your inflow server? If you don't accept email for
addresses that don't exist you won't be sending as many NDRs.
The reason the messages never leave the queue is because the domains
have no working email servers, the servers reply with 4XX status
codes, or the MX for the domain returns an address of 127.0.0.1 or
0.0.0.0, or some other sort of chicanery that prevents your server
from ever delivering the NDRs.
I do have SPF set.
Okay. That's good. But SPF won't do anything for you if the sender
doesn't publish the SPF TXT record for their domain. IOW, SPF helps
validate the sender and avoid "spoofed" addresses but does nothing to
prevent you fro receiving spam.
I belive that I have relaying secured but not quite sure. Under Relay
Restrictions i have 4 IP addresses that may relay thru the virtual server,
however the "Allow all computers which successfully authenticate to relay,
regardless of the list above" box is checked. Should this box be checked or
unchecked?
If the servers that you want to allow can authenticate then you don't
need the IP address in the permission list. If you have the IP
addresses in the list you don't need the authentication.
If I uncheck it do I have to manually enter all company
groups/users to relay and why would I want users to relay?
Ideally you'd want users to use Outlook email client software and
MAPI/RPC to send and receive email. Then there's no need for them to
use SMTP at all.
--
Rich Matheisen
MCSE+I, Exchange MVP
MS Exchange FAQ at http://www.swinc.com/resource/exch_faq.htm
Don't send mail to this address mailto:h.pott@xxxxxxxxxxxxx
Or to these, either: mailto:h.pott@xxxxxxxxxxxxxxx mailto:melvin.mcphucknuckle@xxxxxxxxxxxxx mailto:melvin.mcphucknuckle@xxxxxxxxxxxxxxx
.
- Prev by Date: Re: Ms Exchange 2003 : Remote host said: 550 Requested action not taken: mailbox unavailable
- Next by Date: Re: MX Record question..
- Previous by thread: Re: Exchange 2003 SP2 Relay Configuration
- Next by thread: Distribution tab of Default Offline Address List, enable web based distribution, greyed out?
- Index(es):
Relevant Pages
|
