Improve company productivity with a Business Account.Sign Up

x
?
Solved

How to block an email account from emailing anyone externally except for a select few in Exchange 2003?

Posted on 2011-03-17
9
Medium Priority
?
380 Views
Last Modified: 2012-05-11
Explanation:

We have several email accounts that we have set up to only be able to email within our Exchange organization; they are blocked from emailing outside the organization. I did this by simply creating a Connector attached to the First Routing Group (we only have one) which I set to the entire organization in scope, and set the delivery Restrictions to specifically reject messages from these specific accounts.

However now I am being asked if these blocked accounts can now email SPECIFIC external email addresses. To my knowledge I do not think I can be that selective with a block.

So what are my options? Is there a different way to set up a block such as this, yet it would still allow me to punch holes in it for specific external email addresses?

We are running Exchange 2003 SP2 Standard FYI. Thanks for the help!
0
Comment
Question by:avogini
  • 4
  • 4
9 Comments
 
LVL 74

Accepted Solution

by:
Glen Knight earned 2000 total points
ID: 35163908
This isn't possible with Exchange 2003, it can be done with 2007 and 2010 but not 2003.
0
 
LVL 3

Author Comment

by:avogini
ID: 35164956
I was starting to fear that this exact scenario isn't an option, but as I asked, is there other options available to me to do something similar?
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35164991
You may be able to write a custom SMTP event sink to do this.

See here:
http://support.microsoft.com/kb/313404
http://msdn.microsoft.com/en-us/library/ms526206(v=exchg.10).aspx
0
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

 
LVL 14

Expert Comment

by:Roachy1979
ID: 35178701
No idea if this will work, but can you set up hidden accounts within the AD schema that automatically forward messages to the allowed external addresses?  this should bypass the connection as the "sender" is one of the accounts that has just been created with forwarding in mind....
0
 
LVL 3

Author Comment

by:avogini
ID: 35180661
@Roachy: A possibility, however I don't believe we could set up intelligent rules to filter who they can and cannot send to without having it linked to an Outlook client, which would need to be running...somewhere... Just too many hops at that point for my liking. I may just need to wait for our Exchange 2010 migration in 4th quarter; IF we can do this with 2010...
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35180673
0
 
LVL 3

Author Comment

by:avogini
ID: 35180700
Great, thats for the guide.

However I'm still hopeful someone has a solution for 2003. If not, well that is the way it is. *shrug*
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35180735
There really isn't other than using the SMTP Event Sink that I have already suggested.
0
 
LVL 3

Author Closing Comment

by:avogini
ID: 35198717
Not the answer I was hoping for, but it was an honest answer.
0

Featured Post

Increase Security & Decrease Risk with NSPM Tools

Analyst firm, Enterprise Management Associates (EMA) reveals significant benefits to enterprises when using Network Security Policy Management (NSPM) solutions, while organizations without, experienced issues including non standard security policies and failed cloud migrations

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Configure external lookups on for external mail flow on Exchange 2013 and Exchange 2016.
Microsoft Exchange Server gives you the ability to roll back a corrupt database, but still preserve any data written to that database since the last successful backup. Unfortunately the documentation on how to do this when recovering using imaging b…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
To export Lotus Notes to Outlook PST or Exchange and Domino Server files to Exchange Server or PST files with ease, go for Kernel for Lotus Notes to Outlook conversion tool. Through the video, you can watch the conversion process. A common user with…

602 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question