Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Block incoming email EXCEPT for specific IP range

Posted on 2007-11-16
6
Medium Priority
?
890 Views
Last Modified: 2008-07-17
I am looking to block my Exchange 2000 server from receiving email from anyone except for a specific IP range.  The problem is that I am receiving a ton of spam that apparently is coming to the server by IP address rather than by MX record.  My MX record actually points to a hosted spam filter and looking at the headres, the emails are not coming from the spam filter host.  I want to restrict my Exchange 2000 server from accepting email from anyone but my spam filter host.  Anyone know how to do this?
0
Comment
Question by:perk83
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
6 Comments
 
LVL 23

Accepted Solution

by:
Stacy Spear earned 1400 total points
ID: 20299515
Exchange 2000 didn't have connection filtering I believe. Check the properties on the smtp virtual server. Access tab, is there a connection control there? If so, add your hosted spam filter there and give it a test.
0
 
LVL 1

Author Comment

by:perk83
ID: 20299546
Yes, it does have that.  I wasn't sure if that might prevent computers on my network from accessing the server as well.
0
 
LVL 58

Assisted Solution

by:tigermatt
tigermatt earned 600 total points
ID: 20299607
You can safely configure the SMTP connection control as darkstar has mentioned. It won't affect your computers which have Exchange accounts configured in Outlook, although it will if you have any users connecting to Exchange with POP/IMAP and SMTP through this particular virtual server. The easiest way to get around this if it's an issue is to make another virtual server which has Anonymous authentication disabled and relay enabled; this means users must authenticate to send mail out but it will stop spammers using it as an open relay.

Obviously if you don't have any POP/IMAP clients then this won't be a problem for you. One thing which is often overlooked is dummy POP3 accounts though, they send out via SMTP so may cause you problems. Again, implementing the changes will get around this.

-tigermatt
0
NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

 
LVL 23

Expert Comment

by:Stacy Spear
ID: 20299704
tigermatt is spot on, normal exchange clients won't even notice, except for the reduction in inbound spam! You shouldn't be doing pop/imap anyway with Exchange.
0
 
LVL 1

Author Comment

by:perk83
ID: 20301393
Thanks for the help guys.  I split the points as it seemed like the only thing to do since you were both willing to help me out in a time of need.  darkstar3d received the bulk of the points for initially providing the solution.
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 20303711
Thanks :-)
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't pretend to be an expert at this, but I have found a few things that are useful. I hope that sharing them here will help others, so they will not have to face some rather hard choices. Since I felt this to be a topic of enough importance and…
On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

660 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question