Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Exchange 2007 SMTP abused overnight - Message queue's FILLED - how to safely clear?

Posted on 2009-04-04
3
Medium Priority
?
607 Views
Last Modified: 2013-11-30
Stupid mistake, we power cycled the router on Friday night because it was acting up and lost a recent firewall change. Overnight our SMTP port was open and definitely got abused some. I fixed the firewall error but now I see in our Exchange queue there is TONS of email trying to still go out. I have 8500 queues and 200k+ messages. How can I clear this out safely without breaking anything? I see my edge transport service is going crazy on the RAM for the first time ever.
0
Comment
Question by:danielevans83
3 Comments
 
LVL 49

Accepted Solution

by:
Akhater earned 1000 total points
ID: 24071250
if you don't mind loosing all emails, including legitimate ones, you can setup your smtp connector to use a fictitious relay host (say 10.10.10.10 or any non existing IP)  and restart you transport service

then in your queues you will see one HUGE queue right click and delete with NO NDR all of it
 
0
 
LVL 65

Assisted Solution

by:Mestha
Mestha earned 1000 total points
ID: 24071860
If you don't mind dropping everything then this command will clear it:

remove-message -server "servername" -filter {FromAddress -like "*"} -withNDR $false

However I would ensure that external traffic is blocked so nothing new comes in.

The SMTP port being open shouldn't be a problem, it would be the configuration that is the issue. I presume that you have tightened the settings?

Simon.
0
 

Author Comment

by:danielevans83
ID: 24071960
Yeah, our SMTP was basically open relay when it needed to have only the IP of Google Message Security servers in there. That is fixed.
Unfortunately since I saw 200k+ emails in the queue, I just kept selecting 10k at a time and clicking "delete with no NDR".  It took about 4 hours but I didn't want our server to sit there retrying those all night. Thanks for the methods, I'll have to test them if we get abused again. :)
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If something goes wrong with Exchange, your IT resources are in trouble.All Exchange server migration processes are not designed to be identical and though migrating email from on-premises Exchange mailbox to Cloud’s Office 365 is relatively simple…
Mailbox Corruption is a nightmare every Exchange DBA wishes he never has. Recovering from it can be super-hectic if not entirely futile. And though techniques like the New-MailboxRepairRequest cmdlet have been designed to help with fixing minor corr…
how to add IIS SMTP to handle application/Scanner relays into office 365.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Suggested Courses

886 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question