Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 732
  • Last Modified:

How to reject the attachment which exceed filesize limit in Exchange Server 2007 before it gets received by the HT server

Hi All,

Is there any way to change the precedence of email sending attachment validation ?

because at the moment, a user sent 80 MB email attachment and he got the Forefront error of false positive rather than the "polite" Exchange Server NDR.

any help would be appreciated.

Thanks.
Error Message:
From: ForefrontServerSecurity@ExServer.com [mailto:ForefrontServerSecurity@ExServer.com]
Sent: Wednesday, 13 May 2009 11:37 AM
To: Joe Adams
Cc: mail-admin
Subject: Microsoft Forefront Security for Exchange Server detected a virus
 
 
Microsoft Forefront Security for Exchange Server has detected a virus.
Virus name: "Exceedingly compressed size"
File name: "CES_Client_542.zip"
State: Removed
Subject Line: "FW: CES Client 5.4.2"
Sender: "Joe Adams"
Location: "Itree Software/Exchange Administrative Group (FYDIBOHF23SPDLT)/ExServer (Realtime Scan Job\Joe Adams\Outbox)"
 
 
Name                MaxMessageSize
----                --------------
Send Connector      20000KB       
 
Name                       MaxMessageSize
----                       --------------
Receive Connector          20000KB

Open in new window

0
jjoz
Asked:
jjoz
Advertise Here
  • 4
  • 4
1 Solution
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
You can configure max send and receive size globally to reject messages above that size.
Configure attacment filtering, if you want to filter on the type of file.

http://technet.microsoft.com/en-us/library/aa997139.aspx

AV scans the email first and then it goes through all the AntiSpam agents in a Hub Transport Server.
0
 
jjozAuthor Commented:
ok, so in this case the AV take precedence over the filesize.
i think it's a bit of waste of CPU resource checking the file attachment which was supposed to be rejected at the HT level before continuing to the Forefront layer.
but thanks anyway for the reply.
0
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
But, you wouldn't want hub trasnport server to go through checking all virus messages.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Learn More
 
jjozAuthor Commented:
unfortunately my server has got all of the role:
HT-CAS-MBx + Forefront Security for Exchange 2007 (5 AV Engine)
0
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
So, the forefront picks up the virus messages so that Exchange hub doesn't have to go through all anti spam rules.
0
 
jjozAuthor Commented:
yes this is not what i want ;-| I'd like to know if it is possible to re-arrange the order of validation.
0
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
No. That is hard coded in Exchange.
0
 
jjozAuthor Commented:
ok thanks for your help sir !
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Go Premium
  • 4
  • 4
Advertise Here
Tackle projects and never again get stuck behind a technical roadblock.
Join Now