Solved

Block incoming email EXCEPT for specific IP range

Posted on 2007-11-16
6
871 Views
Last Modified: 2008-07-17
I am looking to block my Exchange 2000 server from receiving email from anyone except for a specific IP range.  The problem is that I am receiving a ton of spam that apparently is coming to the server by IP address rather than by MX record.  My MX record actually points to a hosted spam filter and looking at the headres, the emails are not coming from the spam filter host.  I want to restrict my Exchange 2000 server from accepting email from anyone but my spam filter host.  Anyone know how to do this?
0
Comment
Question by:perk83
  • 2
  • 2
  • 2
6 Comments
 
LVL 23

Accepted Solution

by:
Stacy Spear earned 350 total points
ID: 20299515
Exchange 2000 didn't have connection filtering I believe. Check the properties on the smtp virtual server. Access tab, is there a connection control there? If so, add your hosted spam filter there and give it a test.
0
 
LVL 1

Author Comment

by:perk83
ID: 20299546
Yes, it does have that.  I wasn't sure if that might prevent computers on my network from accessing the server as well.
0
 
LVL 58

Assisted Solution

by:tigermatt
tigermatt earned 150 total points
ID: 20299607
You can safely configure the SMTP connection control as darkstar has mentioned. It won't affect your computers which have Exchange accounts configured in Outlook, although it will if you have any users connecting to Exchange with POP/IMAP and SMTP through this particular virtual server. The easiest way to get around this if it's an issue is to make another virtual server which has Anonymous authentication disabled and relay enabled; this means users must authenticate to send mail out but it will stop spammers using it as an open relay.

Obviously if you don't have any POP/IMAP clients then this won't be a problem for you. One thing which is often overlooked is dummy POP3 accounts though, they send out via SMTP so may cause you problems. Again, implementing the changes will get around this.

-tigermatt
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 23

Expert Comment

by:Stacy Spear
ID: 20299704
tigermatt is spot on, normal exchange clients won't even notice, except for the reduction in inbound spam! You shouldn't be doing pop/imap anyway with Exchange.
0
 
LVL 1

Author Comment

by:perk83
ID: 20301393
Thanks for the help guys.  I split the points as it seemed like the only thing to do since you were both willing to help me out in a time of need.  darkstar3d received the bulk of the points for initially providing the solution.
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 20303711
Thanks :-)
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
how to add IIS SMTP to handle application/Scanner relays into office 365.

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question