Re: Tracing Outlook/OWA senders
- From: Jamestechman <jamestechman@xxxxxxxxx>
- Date: Wed, 27 Feb 2008 13:49:47 -0800 (PST)
If message was sent via mapi, you will not be able to track client IP.
For OWA you can check the client IP in the IIS log files.
James Chong (MVP)
MCITP | EMA; MCSE | M+, S+, Security+
msexchangetips.blogspot.com
On Feb 27, 2:01 pm, "Massimo" <bar...@xxxxxxxxx> wrote:
When Exchange (2003) delivers a SMTP message that has been created by a
Outlook or OWA user, the first IP address reported in the message headers is
the Exchange server's own one.
Is there any way to make it write the original client's IP address in the
message headers? If not, can this information be recovered somewhere (server
logs, IIS logs, etc.)?
I'm trying to trace a certain message back to its original sender, but the
only information I can find in the headers is the Exchange server's IP
address; of course I have the sender's address, and he must surely have been
using Outlook or OWA, so he needed to be authenticated by the domain... but
I need to trace it back to the actual computer where the message was
created; or at least make it possible to do this kind of tracing in the
future.
Can someone please help?
Massimo
.
- Follow-Ups:
- Re: Tracing Outlook/OWA senders
- From: Massimo
- Re: Tracing Outlook/OWA senders
- References:
- Tracing Outlook/OWA senders
- From: Massimo
- Tracing Outlook/OWA senders
- Prev by Date: Re: Active Sync issues with attachments
- Next by Date: EXC2007: Exchange Transport Log Search
- Previous by thread: Tracing Outlook/OWA senders
- Next by thread: Re: Tracing Outlook/OWA senders
- Index(es):
Relevant Pages
|
