Exchange 2007 relay

So I am confused about the whole exchange 2007 relay setup. I have several devices that send email which are not authenticated to the network. First of all, why is it that all of them are able to send email without a setting. In exchange 2003 I had to add their IP address on the smtp virutal server to be allowed to relay, but in exchange 2007, I had to do nothing and they are able.

That is nice and easy of course, but that means that anything else on my LAN can also send email un-authenticated.

Now it does not work for external domains. Why is that? I had to add the external domain as an "accepted domain" before I could get it to send messages out. Is that the expected result?

Thanks.
LVL 2
ademboAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

MarkMichaelCommented:
Yes, that is the expected result.

Anything on your local subnet should be allowed to relay from your Internet SMTP server by default, as long as anonymous access is allowed. The anonymous access is in the authentication tab of the SMTP connector. Is that enabled in 2007?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ademboAuthor Commented:
So would I then have to add an accepted domain for every other domain that I wanted to have the machines be able to email to? My concern is that I dont want every computer/device on my LAN now able to relay to the remote "accepted domains", which if I understand you correctly, that is the case.

Thanks.
0
ademboAuthor Commented:
I see that anonymous users are seleted on the permissions tab of the receive connector, but what happens if I unselect that? Then how would I allow individual devices to be able to do this?
0
jasonwebb2006Commented:
If you disable anonomous users from the recieve connectors, you will no longer recieve email coming in from the internet.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.