Re: Fake domain

---

• From: Jose Huerta <Jose.M.Huerta@xxxxxxxxx>
• Date: Wed, 27 May 2009 12:57:31 -0700 (PDT)

---

On 27 mayo, 15:22, pgartner <pgart...@xxxxxxxxxxx> wrote:

On May 26, 3:14 am, Jose Huerta <Jose.M.Hue...@xxxxxxxxx> wrote:

Hi all,

I'm finishing the installation of an exchange server from scratch for
an organization that currently have email service provided by an ISP
via POP3.

The fact is that i'm not sure enought to move all the email accounts
and deny the service to 40 people. I want to make a "proof of concept"
first.

What i've done is:

1.- Create the domain contoso.com and copy all the "actual" DNS
registers to the server DNS. Then set all the DNS server of the
clients be my DNS server (not the "actual" one). The machine providing
active directory and DNS services is server.contoso.com.

2.- Add to "actual" DNS the IP of server.contoso.com.

3.- Install exchange at server.contoso.com. Config connectors. I set
that accept emails from contoso.com and server.contoso.com.

4.- I add my email account (j...@xxxxxxxxxxx). And I add the address
j...@xxxxxxxxxxxxxxxxxx in the emails list.

By this moment if sending an email to j...@xxxxxxxxxxxxxxxxxx the
message is received correctly.

5.- Go to my ISP control panel, delete the account j...@xxxxxxxxxxx
and create a redirection from j...@xxxxxxxxxxx to
j...@xxxxxxxxxxxxxxxxxxx

By this moment, if sending an email to j...@xxxxxxxxxxx the message is
receive correctly. Also the emails sent by me are received in external
accounts (of other domains).

Now the proble. If i want to send an email to car...@xxxxxxxxxxx, wich
have an account at the ISP, I receive an response of user not found.
Tha means that the server trys to locate the user inside the domain
and not forwards the call to the ISP. I have configured the MX
register at both DNS to point to the ISP server.

I know that if moving all people it will work, but I'm not sure to
have an stable system, to be aware of spam or not secured enough. I
would like to test the systems a couple of weeks before migrating all
people.

System data:

Server is behind a NAT router. The server.contoso.com DNS entry at
"actual" DNS is the public IP of our network, and opened the ports at
the NAT.

SO: Windows Server 2008
Exchange 2007
I made a typical setup with mailboxes, hub and client access.

Regards,

Jose Huerta

you can alway set your exchange servers recieve connector to
contoso.com as non authoraitive (external relay/shared name space) and
have tit forward email not on your server to your ISP (via DNS MX, if
the exchange servers's DNS is populated with the correct MX records,
or via SMARTHOST pointing to your ISP mail server)

http://technet.microsoft.com/en-us/bb676395.aspxhttp://technet.microsoft.com/en-us/bb124423.aspx

Paul

@Lanwench: You are right about it. We have no resources to get a
consultant. The exchange comes from a MAPS subscription (very cheap),
and I'm trying to take profit of it. I'm alone, with no extra
resources (like an extra server to test it) and learning from zero.
Also, I like a lot all of this staff, so this extra work is wellcome.

@Paul: Thanks a lot, seems to be a good solution. I tried to apply it,
but it does not allow me to set contoso.com as an external relay. The
error is the next (in spanish, and them a custom translation)

No se puede quitar el dominio "contoso.com" porque está referenciado
por la plantilla de direcciones de proxy "SMTP:@contoso.com".
"contoso.com" can not be quit because it is referenced by the proxy
address template "SMTP:@contoso.com".

Otherwise, I think that I can test it living with this problem. I
mean, I have two people migrated, and they use another account to sent
mail to non-migrated users. So I can test anti-spam or other measures.
So I don't want to annoy you more.

Thanks to both.

.

---

• References:
  • Fake domain
    • From: Jose Huerta
  • Re: Fake domain
    • From: pgartner

• Prev by Date: Re: Exchange 2007 Transition Schema update
• Next by Date: Exchange 2007 Exchange Server Setup Encountered an Error.
• Previous by thread: Re: Fake domain
• Next by thread: Re: Fake domain
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Advice needed - running Exchange ... the router to your nic ... You'll need to have your ISP create two additional DNS records for your ... delivery is set to the Exchange mailbox, ... I currently only have one NIC in my SBS server ... (microsoft.public.windows.server.sbs) Re: Advice needed - running Exchange ... Exchange mailbox. ... You'll need to have your ISP create two additional DNS records for your ... Run the Connect to Email and the Internet Wizard on SBS ... I currently only have one NIC in my SBS server ... (microsoft.public.windows.server.sbs) Re: Exchange 2003 installation ... Configured on the NIC of the server. ... "Meinolf Weber" wrote: ... Is the ISP's DNS ... Old exchange removed - I don't know the ... (microsoft.public.win2000.active_directory) Re: Advice needed - running Exchange ... Outlook experts for confirmation on this if you like...I've seen it happen, ... You will want to keep both the exchange and isp accounts in there for ... with the Exchange mailbox. ... server, or can I just use the one. ... (microsoft.public.windows.server.sbs) RE: Exchange Fails to start after a reboot. ... this problem appears to be caused by DNS ... please try the steps below on Exchange server. ... Microsoft Online Partner Support ... (microsoft.public.exchange.admin)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Exchange  > microsoft.public.exchange.setup  > 2009-05