Exchange 2007 Anti-spam IP Block List Providers is not working

Posted on 2010-01-08
Last Modified: 2013-12-09
I have 1 Exchange 2007 server running on Server 2003 and have all roles installed on the 1 box.  I have installed the anti-spam part of Exchange 2007 and have enabled all of the anti-spam features one being the IP Block List Providers.
I've added the following providers to the IP Block List Providers with their respective DNS suffix and enabled them all:
We have recently had a good amount of spam come in and one in particular that got my attention.  I go into the message options of the email and get the originating IP address.  I run this IP address against the test-ipblocklistprovider commandlet in EMS and it comes back as being listed on the specific blacklist (either SpamHaus, SORBS, or SpamCOP).  Why is Exchange not blocking that email?  
I also verified the IP address by going to barracuda's website and it is listed as poor.  And I can't just add the IP address to the IP block list in Exchange because there are tons of different IP addresses.
Does anyone know why it's not being blocked? Or is there a way to track the message and see where the IP Block List Provider is failing to block it?

Any help is appreciated!  Thanks!
Question by:sliknick1028
    LVL 16

    Accepted Solution


    try to restart Microsoft exchange transport service ...

    LVL 76

    Expert Comment

    by:Alan Hardisty
    Have you installed the latest Patches / Rollups for Exchange 2007 yet?
    Latest Service Pack is Service Pack 2 -
    No guarantees - but it just might improve your situation.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Find out how to use dynamic social media in email signatures with this top 10 DOs & DON’Ts.
    ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
    how to add IIS SMTP to handle application/Scanner relays into office 365.
    This video discusses moving either the default database or any database to a new volume.

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now