[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1381
  • Last Modified:

How can I prevent spam from being sent via Exchange Activesync

I'm currently using Cloudmark Spam filter for Windows Server.  The problem I'm having is that each and every email gets sent to the associated phones that are tied in using Exchange Activesync 2007.  It's killing the phone batteries as they are receiving hundreds of emails a day when they should only be getting the 'valid' emails that are not spam.

Is there a solution for this?

Thanks.
0
creativenetworks
Asked:
creativenetworks
  • 4
  • 3
  • 2
  • +1
1 Solution
 
Alan HardistyCo-OwnerCommented:
The only way to stop spam getting to your phone via Activesync is to stop the spam getting to your mailbox in the first place.

If cloudmark isn't up to the job, I'd recommend you try something else such as Vamsoft ORF which I use and it is brilliant - www.vamsoft.com ($239 per server).
0
 
lastlostlastCommented:
You can also create a 'Rule' from Outlook or OWA and move the SPAM to any other folder other than the INBOX as Exchange ActiveSync will only sync emails that come into the INBOX

or as alanhardisty says, get a new spam filter... ;-)

Let us know how it goes.
0
 
bitMASTERSCommented:
Don't waste your time and money on another 3rd party product.  I am very familiar with Cloudmark's products and at one point recommended them to everyone.  (I still do for standalone Outllook customer's not connected to Exchange).  Exchange includes all you need to do a better job than any 3rd party spam tool.  The below steps will block the message before it hits the user's mailbox preventing them from getting the spam on any device.

Step 1.  Cancel Cloudmark (of course you could just temporarily disable until after you try this).
Step 2. Add IP Block List Providers in Exchange Management (Organization Configuration/Hub Transport/Anti-Spam/IP Block List Providers/Providers)
Step 3. Hear the praises of your users and send me a check for half the money you just saved. :-)

Ok, a little more detail on step 2. You may need to investigate which providers work best for you but start with SpamHaus (zen.spamhaus.org).  It's the most reliable one out there in my opinion.  I also use Barracuda Central as a secondary provider (b.barracudacentral.org) on my own server--you have to register your ip with them (no fee).  When adding the lists, put your provider's name in the provider name fileld and the address (i.e. zen.spamhouse.org) in the Lookup Domain field.  Select Match any return code and click OK. You can add multiple block list providers.  

Here are some more you can use too but I find adding too many causes false positives.  UCEProtect (dnsbl-3.uceprotect.net, dnsbl-2.uceprotect.net and dnsbl-1.uceprotecte.net), SpamCannibal (bl.spamcannibal.org), Swinog (dnsrbl.swinog.ch), SpamCop (bl.spamcop.net) and SORBS (safe.dnsbl.sorbs.net).  Note that all of these lists are free.  Barracuda is the only one requiring a registration.

Let me know if you  need any more detail.  It really is very simple.  Good luck!
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
creativenetworksAuthor Commented:
One of the things I like about Cloudmark is that it 'holds' your spam in a local Outlook folder for review and release if needed.  Can you elaborate on how or if Exchange does that?  I'm definitely interested in a different solution if it works better.  Being a systems integrator I also have access to Kasperskys Spam product but ran into an issue where Outlook was having Sync issues when used.

Great option above btw!
0
 
Alan HardistyCo-OwnerCommented:
Vamsoft's biggest bonus is the use of greylisting - rejecting the first connection attempt from unknown sources.  This alone kills most spam dead as spammers tend to connect, dump and leave, not hang around or try to resend.

Next attempt the mail has to jump through lots of hoops otherwise it gets rejected.  Has to be seen to be believed.
0
 
bitMASTERSCommented:
yes you can do that in exchange. you can define what happens to messages based on their spam confidence level (scl rating). the ONLY reason to use a third party spam tool is if you don't want to take the time to learn how to use the features of exchange that the 3rd party tools configure for you.
0
 
creativenetworksAuthor Commented:
Can I use Cloudmark AND Exchange together?  In other words have Exchange to first level scanning and Cloudmark only scan what gets through Exchange?
0
 
creativenetworksAuthor Commented:
Bitmasters, I've setup spamhouse as a test.  Can you tell me where the spammed emails go?  Do they get returned or spooled locally so I can release an email that should have gone through?

Thanks so much for an apparent easy solution.

Also do I need to register with Spamhouse or simply add their name and url?

Thanks again
0
 
bitMASTERSCommented:
The purpose of the block list is to rate all messages that hit your server.  It's up to the server to determine what to do with the message.  With the basic instructions I gave you (which are the recommended settings) the server will reject messages (send them back to the sender) with a message that tells the sender it was rejected and by which provider.  You can configure exchange to  ignore certain codes and let the messages come through but its not recommended.  You have other methods to block, delete or quarantine messages also by using the Content Filtering tool of exchange.  Just letting Exchange do it's thing with all the antispam checks coupled with adding block lists and even just zen.spamhaus.org alone will be extremely effective in combatting spam.

Spamhaus recommends that you let your system reject the messages that fail so that the sender knows they have a problem and also so that we just don't accept spamming.  If the spammer doesn't get rejected he keeps on sending them.  You will encounter a valid sender now and then that complains he can't get messages to you.  Test their domain at mxtoolbox.com and it will tell them which block list is rejecting them with instructions on how to get it fixed.

My clients that had Cloudmark cancelled their service after I configured exchange with a block list and have never complained since about spam.  I am sure commercial spam blockers hate it when you find out you really don't need them.

Here is SpamHaus' policy on whether you need to pay.

http://www.spamhaus.org/organization/dnsblusage.html  Note the definition of commercial use at the bottom of the page.  Essentially if you have less than 100,000 smtp connections a day and your query volume is less than 300,000 per day and you are not reselling spam blocking services then you qualify for free service.
0
 
creativenetworksAuthor Commented:
Worked to perfection!
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 4
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now