Avatar of kingcastle
kingcastleFlag for United Kingdom of Great Britain and Northern Ireland asked on

Exchange 2003 Current Connections


I am having lots probelms with spam on this server, our server is not an open reply but somehow there is lots and lots spam in the queues, so i have followed the MS article on how to clean the queus but the problem is they keep filling up with more and more of the same guff and if i look at the smtp server current connections it seems to tbe the same three ip addresses in there all the time.

help please.


Avatar of undefined
Last Comment

8/22/2022 - Mon

if you have a firewall you can deny those IP's and see if it stops. If not you should be able to implicitly state deny these IP's from mail relay.

Setting an implicit deny for the IPs from the mail relay setting will not stop them from connecting or sending SPAM, the place to put those IPs if you want to block mail from them would be the SMTP virtual server's IP Allow/Deny list (denying those IPs the ability to submit mail).

However I do not reccomend mucking with the queues or attempting to modify the allow/deny lists.  It's cumbersome, not terrily effective, and hard to support.

What I recommend is configuring the built-in anti-SPAM functionality (SP2); configured correctly it should block the majority of the SPAM and require very little manual interaction.  Here is a good article on how to configure the functionality:


Have a look at the messages in the queue - find out who they are from.

I will be you a ham sandwich they are from postmaster@yourdomain.com - meaning they are NDR spam.

The way to combat that is recipient filtering and tarpitting -> http://www.amset.info/exchange/filter-unknown.asp

Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes

hi thanks for that and theres ham sandwich on route as they were all postmaster spam, but i did all the things suggested and the queues continued to fill up so the only way around it was to create a new smtp connector and forward all the mail through a smarthost at the isp.


Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question