Solved

ISA Server, Exchange Server and MX Records

Posted on 2004-09-10
8
349 Views
Last Modified: 2008-02-01
I need to install Symantec Antispam for SMTP on my network but I am not to sure where to start?

Here is my setup:  ISA Server 2000 is the first line of defense (member server/DMZ),  Exchange 2000 (domain controller/DNS/AD) is published behing the ISA 2000 Server incluidng it's publishing rules.  I have Symantec Antispam installed on seperate Windows 2000 (member server).

I have spoken with Symantec and they help me with the configuration and it's ready to use! Symantec said, all I need now is to route my emails from my Exchange Server to my Symantec Antispam Server for filtering!

My question is the following.  How do I configure Exchange 2000 to route emails to my  Antispam Server first..   Do I need to change my MX records at my ISP Provider; Due I configure Exchange Server SMTP; or do I do this at the ISA Server Firewall.

I am really stuck on this one, not to sure where to start?

Luis M. Rodriguez, MCP.
0
Comment
Question by:lrodriguez
  • 4
  • 4
8 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 12028771
Simply create an SMTP connector in ESM. Add a "Smarthost" and enter the IP address or dns name (prefered) of your Symantec machine. Leave the cost and domain as default and away you go.

However why do you need to scan outbound email? Are you sending spam out?
Instead what I thing you need to do is adjust the firewall to route all SMTP traffic to the Symantec installation first, then there should be an option in the software to forward the email to your real SMTP server which is your Exchange machine.

Simon.
0
 

Author Comment

by:lrodriguez
ID: 12030065
I will try this, over the weekend.  Is there a website that can visaully show me how to do this?  
0
 
LVL 104

Expert Comment

by:Sembee
ID: 12030601
I can point you in the direction of setting up a Smarthost.

http://www.amset.info/exchange/smtp-connector.asp

As for Symantec, you should probably look at Symantec's web site.

Simon.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:lrodriguez
ID: 12031044
Thanks for the great article from amset.infor in regards to AOL.COM problem!  It appears that everyone is fighting spam.

So correct me if I am wrong!

If I create an SMTP Connector and Smart Host on my Exchanger Server I can actually have the Exchange Server forwad all my emails to the spam server first for filtering and then my Spam Server would re-routed back to the Exchange Server for delivery?

Also, I can use SMTP Connectors to tell my Exchange Server to accept or deny other email domains such as yahoo.com, hotmail.om and aol.com?  


Thanks,

Luis M. Rodriguez, MCP.
0
 
LVL 104

Expert Comment

by:Sembee
ID: 12031441
You would use the same SMTP connector for all domains that you are having problems with. The SMTP application you are using should be able to deliver the messages - they should not be sent back to the Exchange server.

However why do you need to filter outbound email?

Simon.
0
 

Author Comment

by:lrodriguez
ID: 12032189
Simon,

You stated on one of your replies the following:

"Instead what I think you need to do is adjust the firewall to route all SMTP traffic to the Symantec installation first, then there should be an option in the software to forward the email to your real SMTP server which is your Exchange machine".

You’re correct on the Symantec installation!  There is an option in the Symantec installation to forward the emails back to my real SMTP server, but I am not to sure how to configure this at the firewall.  Do you know of any isaserver.org tutorials or Microsoft KB articles that I can use in order to get my spam server on the network.

Thanks,

Luis M. Rodriguez, MCP
0
 
LVL 104

Accepted Solution

by:
Sembee earned 500 total points
ID: 12034651
I don't use ISA server - I personally prefer a real firewall to protect my networks.
There should be an entry on there for SMTP from external which currently points at another server. This needs to be pointed at the Symantec server.
The Symantec server then needs to pointed at another SMTP server for email delivery - this is NOT the Exchange server though - it could be a server provided by your ISP.

Simon.
0
 

Author Comment

by:lrodriguez
ID: 12175811
Thank you.  You were right on the nose.  I need to configure my ISA server to point to my Symantec install.  I had to change the publishing rules in ISA server and then create a SMTP coneection and use the smart host.

Thank you again.  
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now