Solved

ISA Server, Exchange Server and MX Records

Posted on 2004-09-10
8
347 Views
Last Modified: 2008-02-01
I need to install Symantec Antispam for SMTP on my network but I am not to sure where to start?

Here is my setup:  ISA Server 2000 is the first line of defense (member server/DMZ),  Exchange 2000 (domain controller/DNS/AD) is published behing the ISA 2000 Server incluidng it's publishing rules.  I have Symantec Antispam installed on seperate Windows 2000 (member server).

I have spoken with Symantec and they help me with the configuration and it's ready to use! Symantec said, all I need now is to route my emails from my Exchange Server to my Symantec Antispam Server for filtering!

My question is the following.  How do I configure Exchange 2000 to route emails to my  Antispam Server first..   Do I need to change my MX records at my ISP Provider; Due I configure Exchange Server SMTP; or do I do this at the ISA Server Firewall.

I am really stuck on this one, not to sure where to start?

Luis M. Rodriguez, MCP.
0
Comment
Question by:lrodriguez
  • 4
  • 4
8 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 12028771
Simply create an SMTP connector in ESM. Add a "Smarthost" and enter the IP address or dns name (prefered) of your Symantec machine. Leave the cost and domain as default and away you go.

However why do you need to scan outbound email? Are you sending spam out?
Instead what I thing you need to do is adjust the firewall to route all SMTP traffic to the Symantec installation first, then there should be an option in the software to forward the email to your real SMTP server which is your Exchange machine.

Simon.
0
 

Author Comment

by:lrodriguez
ID: 12030065
I will try this, over the weekend.  Is there a website that can visaully show me how to do this?  
0
 
LVL 104

Expert Comment

by:Sembee
ID: 12030601
I can point you in the direction of setting up a Smarthost.

http://www.amset.info/exchange/smtp-connector.asp

As for Symantec, you should probably look at Symantec's web site.

Simon.
0
 

Author Comment

by:lrodriguez
ID: 12031044
Thanks for the great article from amset.infor in regards to AOL.COM problem!  It appears that everyone is fighting spam.

So correct me if I am wrong!

If I create an SMTP Connector and Smart Host on my Exchanger Server I can actually have the Exchange Server forwad all my emails to the spam server first for filtering and then my Spam Server would re-routed back to the Exchange Server for delivery?

Also, I can use SMTP Connectors to tell my Exchange Server to accept or deny other email domains such as yahoo.com, hotmail.om and aol.com?  


Thanks,

Luis M. Rodriguez, MCP.
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 104

Expert Comment

by:Sembee
ID: 12031441
You would use the same SMTP connector for all domains that you are having problems with. The SMTP application you are using should be able to deliver the messages - they should not be sent back to the Exchange server.

However why do you need to filter outbound email?

Simon.
0
 

Author Comment

by:lrodriguez
ID: 12032189
Simon,

You stated on one of your replies the following:

"Instead what I think you need to do is adjust the firewall to route all SMTP traffic to the Symantec installation first, then there should be an option in the software to forward the email to your real SMTP server which is your Exchange machine".

You’re correct on the Symantec installation!  There is an option in the Symantec installation to forward the emails back to my real SMTP server, but I am not to sure how to configure this at the firewall.  Do you know of any isaserver.org tutorials or Microsoft KB articles that I can use in order to get my spam server on the network.

Thanks,

Luis M. Rodriguez, MCP
0
 
LVL 104

Accepted Solution

by:
Sembee earned 500 total points
ID: 12034651
I don't use ISA server - I personally prefer a real firewall to protect my networks.
There should be an entry on there for SMTP from external which currently points at another server. This needs to be pointed at the Symantec server.
The Symantec server then needs to pointed at another SMTP server for email delivery - this is NOT the Exchange server though - it could be a server provided by your ISP.

Simon.
0
 

Author Comment

by:lrodriguez
ID: 12175811
Thank you.  You were right on the nose.  I need to configure my ISA server to point to my Symantec install.  I had to change the publishing rules in ISA server and then create a SMTP coneection and use the smart host.

Thank you again.  
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now