• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1489
  • Last Modified:

How to change Originating Ip on an email from my exchange server

I got SBS2k3 server with its original Exchange 2003 server.
This server got multiple wan IPs.
Network users browse the internet thru IP#1 thru its ISA server.

SMTP virtual server receives emails from IP#2.  And relayed using IP #1 hence email shows "X-Originating-IP" with IP#1.

I'd like to change the X-Originating-IP to IP#2.

Evern further, when email is received at the other end it shows my internal local network IP on the first "received from" tag, can this be hidden?

Everthing is working OK, except I'd like to change this outgoing IP.
0
ivanxerone
Asked:
ivanxerone
  • 6
  • 5
  • 4
3 Solutions
 
tntmaxCommented:
You would have to do this on the firewall. what kind of firewall do you have? Are you load balancing? Do you have 2 firewalls or 1? Sounds like 1 firewall.
0
 
ivanxeroneAuthor Commented:
ISA firewall. Just 1.
0
 
tntmaxCommented:
I am requesting  a mod to add ISA firewall zone to your question. It should be a simple configuration change on the firewall.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
Keith AlabasterEnterprise ArchitectCommented:
Won't happen. ISA will use the first IP address bound on the external interface - you can't select which of the ip addresses is used on the outbound traffic - you can only elect the listening address, inbound, through the publishing rule and web listener.

Keith
ISA MVP
0
 
tntmaxCommented:
well, there you go :-)
0
 
ivanxeroneAuthor Commented:
There must be a third party add on to exchange to allow this.
Not even exchange 2007 allows this, using one NIC that is.
I'm even thinking of getting Kerio Mail Server.
0
 
Keith AlabasterEnterprise ArchitectCommented:
Good luck with it - as ISA will not allow it ; call it a featurette that is well documented.

You can use ISA with route relationships so another firewall/router outside of ISA performs the NAT function instead but it is not possible with ISA doing the NAT. No, there is no add-on that will allow it. Add-ons complement the ISA firewall engine and services. As ISA will not allow the function, no add-on will be able to change this.
0
 
Keith AlabasterEnterprise ArchitectCommented:
Why have we changed the zones?

No offence but I have given the answer - it is not possible with isa server and is fully documented - and reported against - on technet; on ISA future version developments using FTMG; and, on previous questions I have answered here. Extending the zones cannot change the answer.

0
 
ivanxeroneAuthor Commented:
The questio is about Exchange.
What if I was to install Exchange with out ISA on server, it should be possible to do that.
Then in that case, the question is remains, is it possible to tell Exchange (not ISA) which IP to use for outbound?
0
 
Keith AlabasterEnterprise ArchitectCommented:
Again - I do not believe Exchange will do it. You have the option for setting what the destination IP address will be through smarthost etc but not the address upon which traffic will leave your network.

Something like a PIX firewall (and I expect an ASA) can certainly do it because they can perform outbound selective NAT.
0
 
tntmaxCommented:
yes, you have your question regarding ISA, that should be the answer to the question. Exchange only knows what is its default gateway, nothing more. So unless you plan on placing your Exchange server directly on the Internet (big no-no these days!), your stuck with your IP address or getting a new firewall. Why not just setup reverse DNS on the originating IP and move it to that? It would be your most cost-effective solution. Thanks.
0
 
tntmaxCommented:
I requested the zone change since it was clearly an ISA question rather than an Exchange question. This was done before you answered. This way, points get optimal assignment.
0
 
Keith AlabasterEnterprise ArchitectCommented:
No problem - and i would not expect to be included in any points split (they are just for fun and peer bragging lol).

I would agree the simplest way would be to set the A record and MX record to the default external IP address associated with the ISA. Then you wouldn't fall foul of the AOL reverse issues either. having the traffic leave and arrive on thesame address is by far the best approach.



0
 
ivanxeroneAuthor Commented:
I found no solution for this issue.
Seems to be impossible to make exchange do what I want.
0
 
tntmaxCommented:
No, it's impossible with your current setup. Change your setup and it will work fine.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 6
  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now