njmatt
asked on
Exchange Recipient Filter (Anti-Spam) problem after Migrating to 2003 to 2007
Hi,
Right now I have a mixed environment of 2003/2007. Going back a few months, my Postmaster account was bombarded with SPAM (thousands), but then I implemented recipient filtering in 2003 with tarpitting rules. The spam went away completely and the only thing in Postmaster was legit msg failures (like 1 or 2 a day).
Fast forward now to 2007 being implemented... Ever since I allowed the new exchange server to start acceping incoming mail from Postini the Postmaster account has been filling up with about 100 SPAM messages a day. I have recipient filtering on with restrictions on incoming IP addresses via SMTP. Obviously there is something missing from my 2007 configuration that it's not working as well as it was in 2003. Any suggestions?
Right now I have a mixed environment of 2003/2007. Going back a few months, my Postmaster account was bombarded with SPAM (thousands), but then I implemented recipient filtering in 2003 with tarpitting rules. The spam went away completely and the only thing in Postmaster was legit msg failures (like 1 or 2 a day).
Fast forward now to 2007 being implemented... Ever since I allowed the new exchange server to start acceping incoming mail from Postini the Postmaster account has been filling up with about 100 SPAM messages a day. I have recipient filtering on with restrictions on incoming IP addresses via SMTP. Obviously there is something missing from my 2007 configuration that it's not working as well as it was in 2003. Any suggestions?
ASKER
5.1.1 User unknown
... when I put an a BS user
... when I put an a BS user
ASKER
I should mentioned that the SPAM is addressed TO the postmaster.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I just enabled non-account blocking per the suggestion of someone on the Postini forums. I will keep you posted over the next few hours.
ASKER
actually - that seems it will block all of my distributions lists being that those are not added as users. that's no good.
I don't understand what you think it is blocking in relation to groups. The filter does a plain lookup on the email address. As long as the group is mail enabled with a valid email address then it should be allowed through.
Simon.
Simon.
Simon.