How do we configure Exchange to only accept mail from...

Posted on 2005-04-10
Last Modified: 2010-04-13
Hi all,
How do we configure Windows/Exchange 2000 to only accept mail from 2 IP addresses?


Question by:Texal
    LVL 9

    Expert Comment

    You may be able to do this:

    Open your SMTP virtual server properties -> Access -> Connection -> Only from list below and add those IP's
    LVL 15

    Accepted Solution

    You could set it thru the "relaying" portions in exchange 2000 under smtp.  So, are you saying that you only are expecting inbound e-mail from 2 sources? By default SMTP [Port 25] is always listening and waiting for a host to connect to it, ready to receive e-mail.  Since Exchange could receive an e-mail from *any* other mail server (or client) in the world, the default settings are "allow all" - which makes sense.

    But you could limit it to just 2.

    First, here's a link to relaying, then the section in particular that is relevant:
    Check microsoft's site too and learn about SMTP Relaying so you're clear on what you're doing.

    Controlling SMTP virtual server relaying

    1.Launch Exchange System Manager. Navigate to your SMTP virtual server (it's under Administrative Groups | yourAdminGroup | yourServerName | Protocols).
    2.Right-click the virtual server and choose the Properties command.
    3.Select the Access tab.
    4.To restrict inbound SMTP connections to a particular address range (for example, if your POP3/IMAP4 clients are using a block of addresses via a VPN or dial-up connection), use the Connection… button to specify which addresses may make SMTP connections. Note that the settings in the Connection dialog apply to all hosts that try to use this SMTP server.

    To control SMTP relaying, click the Relaying button. In the Relay Restrictions dialog box, you can do the following:
    1.To turn off all relaying from everywhere, select the "Only the list below" radio button, then leave the Computers list blank. This is the default setting.
    2.To allow relaying from a single computer or block of network addresses, use the Add button to add the IP addresses or blocks that you want to be able to relay. You can also allow relaying by domain name instead of IP address, although there is a performance penalty if you do.
    3.To block a specific set of IP addresses, select the "All except the list below" radio button, then use the Add button to add the specific computers or network addresses that you want to be able to relay.
    To allow computers that authenticate to Exchange to relay, no matter what other restrictions are in place, make sure that the "Allow all computers which successfully authenticate…" checkbox is turned on.
    LVL 2

    Expert Comment

    you could get a firewall that only allows the program to connect with 2 ip addresses + the pop3 ip. i think most firewalls do that.. except like the built in windows xp one.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
    These days socially coordinated efforts have turned into a critical requirement for enterprises.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now