Solved

Exchange 2010 sending lots of traffic out

Posted on 2010-08-31
4
364 Views
Last Modified: 2012-05-10
I recently setup a new exchange 2010 server and created a new MX record on the web for the server. I have a cisco ASA5520 and I did a static translation to point a public ip at the private ip address. This worked fine for a day until I started seeing A LOT!! of traffic being generated from exchange. I have installed wireshark on my exchange machine and can see a lot of email traffic that should not be there. I also looked in the queue viewer on exchange 2010 and I see 9946 messages in the queue. They are all over the place, baahi.com, babenhausen.org, babywearinginternation.com, bagan.net.mm, bags-purses-totes.com, and so forth with about 10000 haha. How can I get these out of my queue and stop exchange from sending these?
0
Comment
Question by:justin0104
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 9

Expert Comment

by:Dan Arseneau
ID: 33573174
Go to http://www.mxtoolbox.com and test your server for open relay.  This is usually the cause of such a mess.  Also, to help reduce those pesky Reply-To headers, add a TXT record to your external DNS.

Domain.com TXT "v=spf1 mx ~all"

With the quotes.
0
 

Author Comment

by:justin0104
ID: 33573191
What do you mean add a text record to the domain on the external DNS entry. I know we have an external MX record created to point to the public ip of exchange. On that DNS record should I create that text record? What should it say and what does it mean? I also checked out the mxtoolbox site but didn't see anything there to check for open relay?
0
 
LVL 9

Expert Comment

by:Dan Arseneau
ID: 33573201
As for mxtoolbox.  Just type in the IP you have defined on your external DNS for your SMTP server...then follow the instructions.

The TXT record is actually a SPF record.  It tells receiving servers that only the IP defined in your MX record is allowed to send from that domain.  It helps prevent you looking like you're sending SPAM.
0
 
LVL 9

Accepted Solution

by:
Dan Arseneau earned 500 total points
ID: 33573204
...sorry, not your IP...type in your domain name like domain.com.  The site will run various test and report back its fndings.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question