LDAP quarry to exchange to determine valid email addresses

Posted on 2005-04-21
Last Modified: 2012-08-14
MY ISP does spam and virus filering for me then relays the email to my exchange 2003 server. This is working
great as it takes a load off my server.

They offer one more service. They can do a LDAP quarry to my network for valid emails
and if it is a valid user then the mail would be fowarded to me, otherwise would be dropped
at thier server.  This sounds great but how do I make it work. Exchange itself do not answer
LDAP quarries and I dont want to put a DC in the DMZ.

So can I setup a LDAP server service on a box that is visable to them and then use the firewall
so only they can quarry it?

Is this worth spending more time on trying to resolve?
The ISP feels that it very worth while and can prevent DOS attacks.

Question by:vppsit
    LVL 6

    Expert Comment

    Check microsoft MIIS server that way you can put a copy of the directory in your dmz and you van disided when is the copy of the AD going to updated
    this is a link that explaine more:
    LVL 26

    Expert Comment

    why go through all this trouble when exchange 2003 has a feature that will drop any
    connection for a user that does not exist on ur Active Directory??
    LVL 1

    Author Comment

    is there any special setups required to make this work ?
    Does that mean the exchange does not have to process the whole email to determine the
    addressee does not exist on my system
    LVL 26

    Accepted Solution

    no special step...and it only works on exchange 2003
    go to ESM\global settings\message delivery\recipient filtering and check filter recipients
    who are not in the directory....
    now messages will be handles according to ur setup in the sender filtering section...
    u can choose to drop the connection if u like....which i usually do ...without the NDR...
    it is up tp u....
    dont forget to restart exchange server after u make any changes....and u also make sure
    to apply the filter in ur smtp virtual server.....
    LVL 1

    Author Comment

    Thanks for the info

    I have made the changes . Is there a way to test if the quarry is done before
    receiving the entire mail?

    I also blocked email with blank senders.
    LVL 26

    Expert Comment

    well i am not sure if i have an answer for this question....but maybe diagnostic logging
    if enabled may be able to show what happens when a message is recieved for a user that does not exist on ur AD...but since the option is to drop connection then i am sure
    message is not accepted yet orelse there will ne no use to drop the connection....
    now one more tip ....u should also block ur own domain from incomming....
    under sender filtering add ur own domain ....some spammers use this technique.....

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    Use email signature images to promote corporate certifications and industry awards.
    Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
    In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
    This video discusses moving either the default database or any database to a new volume.

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now