How to check if your Exchange Server is open for relay.

Published on
13,365 Points
1 Endorsement
Last Modified:
Community Pick
You would notice in your Exchange System Manager SMTP Queues there would be many messages going to unknown domains from unknown senders.

So, it is best to check is your server open for relay.

Step 1. Is to run the basic telnet command on your EXCHANGE SERVER (You may want to replace localhost with your server name or its IP Address)Telnet Command
Step 2. When you process the telnet command, you would see the following result.
Out put of Telnet Command
Step 3 Need to type in EHLO and hit enter OR type in HELO and hit enter to see the following result (Keep in mind the number of SMTP Verbs listed in this output - it has to be the same on all Exchange servers)

Step 4. Next is to process the Mail from command (I choose to use administrator@yahoo you may choose to write using any other third-party domain which is not local to Exchange).

You may choose different variants of mail from commands as per Microsoft KB 304897

Step 5. Now you would need to type in RCPT TO (this would be a recipient outside your Exchange Organization)

Notice the result of the command "Unable to relay for recipient@domain.com" - This would mean that your server is not open for relay. However, if you do not get this result and get a result instead you find the cursor spacing in the next line - this means that the Exchange is waiting for you to relay. This means you are open to relay.

So, where to check if your server is open for relay ?

Open Exchange System Manager.
=> Organization
=> Administrative Groups
=> Your A.G
=> Servers
=> Your Exchange Server
=> Protocols
=> Default SMTP Virtual Server properties
Access tab => Relay tab.
(Check the basic setting as the pic attached)

SMTP Virtual Server
And one more location

Open Exchange System Manager.
=> Organization
=> Administrative Groups
=> Your A.G
=> Routing Groups
=> Connectors
=> SMTP Connector properties
=> Address Space tab.

(Check the basic setting as picture mentioned - the "Allow messages to be relayed to these domains" should be unchecked)

SMTP Connector
Going through these steps, you should be able to check if you are open for relay and curb the relaying.

Featured Post

Cloud Class® Course: MCSA MCSE Windows Server 2012

This course teaches how to install and configure Windows Server 2012 R2.  It is the first step on your path to becoming a Microsoft Certified Solutions Expert (MCSE).

Join & Write a Comment

There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
This video tutorial shows you the steps to go through to set up what I believe to be the best email app on the android platform to read Exchange mail.  Get the app on your phone: The first step is to make sure you have the Samsung Email app on your …

Keep in touch with Experts Exchange

Tech news and trends delivered to your inbox every month