Solved

How to reject the attachment which exceed filesize limit in Exchange Server 2007 before it gets received by the HT server

Posted on 2009-05-12
8
698 Views
Last Modified: 2012-05-06
Hi All,

Is there any way to change the precedence of email sending attachment validation ?

because at the moment, a user sent 80 MB email attachment and he got the Forefront error of false positive rather than the "polite" Exchange Server NDR.

any help would be appreciated.

Thanks.
Error Message:

From: ForefrontServerSecurity@ExServer.com [mailto:ForefrontServerSecurity@ExServer.com]

Sent: Wednesday, 13 May 2009 11:37 AM

To: Joe Adams

Cc: mail-admin

Subject: Microsoft Forefront Security for Exchange Server detected a virus
 
 

Microsoft Forefront Security for Exchange Server has detected a virus.

Virus name: "Exceedingly compressed size"

File name: "CES_Client_542.zip"

State: Removed

Subject Line: "FW: CES Client 5.4.2"

Sender: "Joe Adams"

Location: "Itree Software/Exchange Administrative Group (FYDIBOHF23SPDLT)/ExServer (Realtime Scan Job\Joe Adams\Outbox)"
 
 

Name                MaxMessageSize

----                --------------

Send Connector      20000KB       
 

Name                       MaxMessageSize

----                       --------------

Receive Connector          20000KB

Open in new window

0
Comment
Question by:jjoz
  • 4
  • 4
8 Comments
 
LVL 24

Expert Comment

by:Rajith Enchiparambil
ID: 24372210
You can configure max send and receive size globally to reject messages above that size.
Configure attacment filtering, if you want to filter on the type of file.

http://technet.microsoft.com/en-us/library/aa997139.aspx

AV scans the email first and then it goes through all the AntiSpam agents in a Hub Transport Server.
0
 
LVL 1

Author Comment

by:jjoz
ID: 24372356
ok, so in this case the AV take precedence over the filesize.
i think it's a bit of waste of CPU resource checking the file attachment which was supposed to be rejected at the HT level before continuing to the Forefront layer.
but thanks anyway for the reply.
0
 
LVL 24

Expert Comment

by:Rajith Enchiparambil
ID: 24372477
But, you wouldn't want hub trasnport server to go through checking all virus messages.
0
 
LVL 1

Author Comment

by:jjoz
ID: 24372497
unfortunately my server has got all of the role:
HT-CAS-MBx + Forefront Security for Exchange 2007 (5 AV Engine)
0
Want to promote your upcoming event?

Attending an event? Speaking at a conference? Or exhibiting at a tradeshow? Easily inform your contacts by using a promotional banner in your email signature. This will ensure your organization’s most important contacts are in the know.

 
LVL 24

Expert Comment

by:Rajith Enchiparambil
ID: 24372551
So, the forefront picks up the virus messages so that Exchange hub doesn't have to go through all anti spam rules.
0
 
LVL 1

Author Comment

by:jjoz
ID: 24373183
yes this is not what i want ;-| I'd like to know if it is possible to re-arrange the order of validation.
0
 
LVL 24

Accepted Solution

by:
Rajith Enchiparambil earned 500 total points
ID: 24373224
No. That is hard coded in Exchange.
0
 
LVL 1

Author Closing Comment

by:jjoz
ID: 31580855
ok thanks for your help sir !
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now