[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 722
  • Last Modified:

How to reject the attachment which exceed filesize limit in Exchange Server 2007 before it gets received by the HT server

Hi All,

Is there any way to change the precedence of email sending attachment validation ?

because at the moment, a user sent 80 MB email attachment and he got the Forefront error of false positive rather than the "polite" Exchange Server NDR.

any help would be appreciated.

Thanks.
Error Message:
From: ForefrontServerSecurity@ExServer.com [mailto:ForefrontServerSecurity@ExServer.com]
Sent: Wednesday, 13 May 2009 11:37 AM
To: Joe Adams
Cc: mail-admin
Subject: Microsoft Forefront Security for Exchange Server detected a virus
 
 
Microsoft Forefront Security for Exchange Server has detected a virus.
Virus name: "Exceedingly compressed size"
File name: "CES_Client_542.zip"
State: Removed
Subject Line: "FW: CES Client 5.4.2"
Sender: "Joe Adams"
Location: "Itree Software/Exchange Administrative Group (FYDIBOHF23SPDLT)/ExServer (Realtime Scan Job\Joe Adams\Outbox)"
 
 
Name                MaxMessageSize
----                --------------
Send Connector      20000KB       
 
Name                       MaxMessageSize
----                       --------------
Receive Connector          20000KB

Open in new window

0
jjoz
Asked:
jjoz
  • 4
  • 4
1 Solution
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
You can configure max send and receive size globally to reject messages above that size.
Configure attacment filtering, if you want to filter on the type of file.

http://technet.microsoft.com/en-us/library/aa997139.aspx

AV scans the email first and then it goes through all the AntiSpam agents in a Hub Transport Server.
0
 
jjozAuthor Commented:
ok, so in this case the AV take precedence over the filesize.
i think it's a bit of waste of CPU resource checking the file attachment which was supposed to be rejected at the HT level before continuing to the Forefront layer.
but thanks anyway for the reply.
0
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
But, you wouldn't want hub trasnport server to go through checking all virus messages.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
jjozAuthor Commented:
unfortunately my server has got all of the role:
HT-CAS-MBx + Forefront Security for Exchange 2007 (5 AV Engine)
0
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
So, the forefront picks up the virus messages so that Exchange hub doesn't have to go through all anti spam rules.
0
 
jjozAuthor Commented:
yes this is not what i want ;-| I'd like to know if it is possible to re-arrange the order of validation.
0
 
Rajith EnchiparambilOffice 365 & Exchange ArchitectCommented:
No. That is hard coded in Exchange.
0
 
jjozAuthor Commented:
ok thanks for your help sir !
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now