Open Relay Exchange 2007

I recently deployed Exchange 2007 in a test environment with some DNS domains I use for a lab.  Almost immediately after I opened port 25 for mail, the network started performing very badly.  I took a look at the Queue Viewer and there were about 6000 messages in the queue going outbound, indicating I had obviously created an open relay.  I quickly stopped the Exchange Transport service and normal operation resumed.  

I will gladly provide 2000 points to anyone who can provide ALL of the following:

-An easy to follow procedure to eliminate Open Relay on Exchange 2007
-A recommendation for a decent software based SPAM filtering solution
-A way to test for open relay / SMTP best practic config
-The best website for finding out if my IP addresses are black listed for open relay.

Thanks in advance.
LVL 6
ged125Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
AJermoConnect With a Mentor Commented:
short answers:
-An easy to follow procedure to eliminate Open Relay on Exchange 2007
1. Use edge transport role on seperate server. by default relay isn't permitted/configured even on the hub transport

-A recommendation for a decent software based SPAM filtering solution
2. the edge role has some spam filtering and anti-virus options built in, I'd strongly suggesting checking it out before doing something different. If you decide to go with a 3rd party solution then Baraccuda imho is one of the better solutions.

-A way to test for open relay / SMTP best practic config
3. use Telnet to send a spoof email to an address you don't host on your production server, you should get an error that relaying isn't permitted.
Here are the steps:

 cut and past from http://www.msexchange.org/pages/article.asp?id=54
1.       Open a Command Prompt window

2.       At the Command Prompt, type Telnet

3.       You will now be presented with the Telnet prompt, type OPEN 25

Notice the server responding with an error message:  Unable to relay for mark@4mcts.com.  This is telling me I have a Closed Relay.



-The best website for finding out if my IP addresses are black listed for open relay.
4. Read the recieve logs, the transaction will  usually indicate who's black list is reporting you and where to go for removal.  


0
 
AJermoCommented:
forgot the link for teh anti-spam/anti-virus informaiton for edge role
http://www.microsoft.com/exchange/evaluation/features/default.mspx

0
 
MesthaCommented:
Exchange 2007 is relay secure by default. Therefore you must have made a configuration error.
It is actually quite hard to turn the server in to an open relay. What did you change after deployment? You said that you entered some domains, what did you enter? Did you change the Receive connectors, send connectors?

You do NOT have to deploy an Edge server to secure the server or stop an open relay, and an antispam tool is not required either. This is basic configuration of the server.

Simon.
0
 
ged125Author Commented:
Thank you!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.