Solved

Killing client connection to Exchange server

Posted on 2011-03-07
2
636 Views
Last Modified: 2012-05-11
Hi

The other night, the transaction logs on one of our Exch 2007 servers was growing rapidly. We managed to find the cause was a client that must have had a virus or something but was causing a lot of work for Exchange, which in turn generated logs for this work. We managed to close the connection by disabling the client's port on the local Cisco switch.

We're looking at ways we could have done this better. Is there another way we can disable a client's connection to Exchange?
I was thinking one of the following

1. Disable MAPI on the offending mailbox
2. Use TCPView to close the connection (IP > right click > Close Connection)

Does anyone know any other method?
0
Comment
Question by:chuckp2010
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 43

Accepted Solution

by:
Amit earned 500 total points
ID: 35057303
TCPView is one tool can be used. Secondly, unplug the client machine from the network. Scan it and then join it back
0
 
LVL 2

Expert Comment

by:pchui
ID: 35065968
First, you can monitor the clients using the Microsoft Exchange Server User Monitor:
http://www.microsoft.com/downloads/en/details.aspx?FamilyId=9A49C22E-E0C7-4B7C-ACEF-729D48AF7BC9&displaylang=en

What type of activity is the client generating? Are lots of messages being generated? Exchange 2007 provides a degree of connection and message throttling:
http://technet.microsoft.com/en-us/library/bb232205(EXCHG.80).aspx

Also consider protecting your Windows server against DoS-type attacks:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;324270


0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question