Solved

Mail services for SBS at dynamic IP

Posted on 2010-09-18
6
361 Views
Last Modified: 2012-05-10
I have an SBS lab set up at home.  The ISP provides a dynamic address and I would like to know what mail services are required for clients on the network to be able to send and receive mail.  I see at DynDNS, available products are Mailhop Relay, Mailhop Outbound, and Mailhop Forward.
0
Comment
Question by:AE_JB
  • 4
6 Comments
 
LVL 2

Expert Comment

by:HFVgally
Comment Utility
You don't really need any of those services given that you are using SBS. Setup your SBS as though you had a static - the router will be port-forwarding inbound to the SBS server's LAN IP anyway. The basic DynDNS service is all you really need - you just need to configure your domain name DNS mx record to point to the same host you assign for the DynDNS record. If you want, you can set an ailas like mail.domain.com to point to the DynDNS record, and then set your MX record to mail.domain.com, but that really isn't necessarry.
The real problem you will have, however, is messages bouncing back to you if your ISP doesn't set their reverse DNS record to match your domain (which they won't if it's dynamic). A lot of mail server do reverse lookups as part of their anti-spam measures. To get around that you could use the MailHop Outbound and set up a forwarder on your server's SMTP service... but then maybe it would just be as cost effective and easier to pay the extra per month for a static IP address from your ISP.
0
 
LVL 9

Expert Comment

by:ken2421
Comment Utility
No doubt that a static IP is better. That being said I would use a server like Postini
( http://www.google.com/postini/index.html ) in between my exchange and the all the potential threats that come with it. You can use it static or dynamic and you get the security of redirected and inspected mail. It is a small price to pay for a small network and you won't be bald like me from pulling your hair out.

Check it out,
Ken
0
 
LVL 2

Expert Comment

by:HFVgally
Comment Utility
Postini is fine, and messagelabe (now symantec). I prefer MX Logic (now McAfee). But all of those services are monthly anti-spam anti-virus services and have a not insignificant monthly fee. Even with one of those services, that COULD solve your outbound sending issue that i detailed above (depending on the package of services with each vendor), but you will still need to use the base DynDNS service to get around the ISPs IP. Since this is an SBS lab, maybe you want to play around with the built in exchange spam flitering tools and even the trial of Forefront.
In my experience, though, for clients as well as for my self, I just spring for the extra cost of the static AND the MX Logic service. I have used several server based anti-spam products, the best and easiest of these was Cloudmark for Exchange, but they all had their drawbacks - if they were cheap they weren't very good or required a lot of "tuning"
0
Free camera licenses with purchase of My Cloud NAS

Milestone Arcus software is compatible with thousands of industry-leading cameras for added flexibility. Upon installation on your My Cloud NAS, you will receive two (2) camera licenses already enabled in the software. And for a limited time, get additional camera licenses FREE.

 

Author Comment

by:AE_JB
Comment Utility
I am going to leave the residential dynamic address as is.  I do have a DynDNS domain.  Not too worried about third party security and filtering at this point, just want to get connectivity.  Will Mailhop Forward from DynDNS relay ingoing and outgoing mail, to and from the SBS clients?  
0
 
LVL 2

Accepted Solution

by:
HFVgally earned 500 total points
Comment Utility
Mailhop Forward is for incoming mail only. It's really not necessarry given that you will be running your own exchange server. Exchange will do all of the routing of mail to the outside world or from the outside to individual SBS clients. The critical thing to address with DynDNS is keeping your MX record up to date with your ISPs dynamic address. With a dynamic address (as with a static) you will still forward port 25 from the external interface of your router to the internal address of the server.
Your only other option is to use the SBS pop-3 connector and set up a series of individual POP-3 mailboxes on an external mail server (through your ISP, perhaps). But then you need to administer effectively two mailboxes (one at the ISP and one on the Exchange server) for each user. You also potentially incur the mail hosting charges of your ISP (if any).
Mailhop Outbound is more important for your situation since the ISP will not be able to create a reverse lookup record for your domain on their dynamic IP address block. If you don't use this feature or have your server relay mail to your ISP's mail server (if they allow it), pretty much every message sent to aol.com, yahoo.com, msn.com, gmail.com, and any other domain which uses a method of anti-spam that does a reverse lookup will either bounce your messages or simply discard them without notice.
0
 
LVL 2

Expert Comment

by:HFVgally
Comment Utility
edit to clarify: you need to use Mailhop Outbound OR relay mail off of you IPS's mail server through Exchange to prevent bounced and discarded messages.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now