I just set up a new Exchange Server 2010 on a new Windows Server 2008 box that I am getting ready for deployment. I've finished setting up the MX record for @seemysetup.com, and set up the port forwarding on the router, and my SMTP test checked out properly.
But upon trying to send an email to the main user, "Administrator@seemysetup.com" via my hotmail account, I get an error. The log is shown below:
OK, connected to kleincs.dyndns.org...
< 220 Venom.kleincs.local Microsoft ESMTP MAIL Service ready at Tue, 19 Oct 2010 15:49:11 -0400
> HELO edit.dnsvr.com
< 250 Venom.kleincs.local Hello [18.104.22.168]
> MAIL FROM:<firstname.lastname@example.org>
< 530 5.7.1 Client was not authenticated
I went into the receive connector and saw that I have two records in there:
(venom is the name of the server)
Inside both receive connectors, the "Anonymous Users" permission group is NOT checked, so anonymous users can't connect.
So my question is: Should I enable this? Will that solve the problem?
And how does this affect the security of my Exchange Server? Why was it disabled by default in the first place? It makes sense that emails from anonymous sources should be allowed in to the exchange server. So if I enable it is my exchange server still safe or is it now open as a conduit for anonymous users to send spam via it?
Lastly, should I enable the "Anonymous Users" permission group for "Client VENOM", or "Default VENOM", or both? What's the difference between the two?