• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 444
  • Last Modified:

exchange 2010 open relay issue, need log analysis.

According to everything I can find, my server should not be functioning as an open relay.  It is an internet facing sbs 2011 server running exchange 2010.  According to MXtoolbox, the server is not an open relay, but these logs are making me nervous.  can someone please look at these logs and let me know if it is still giving open relay?  all of my domain entries have been replaced with mycompany. RECV20111022-1.LOG
0
tatseosj
Asked:
tatseosj
  • 2
1 Solution
 
Cliff GaliherCommented:
Instead of posting the whole log, can you tell us WHAT in the log concerns you? Otherwise that is a lot of data to digest purely on a volunteer basis.

-Cliff
0
 
tatseosjAuthor Commented:
Here is a section that concerns me, to my eye it looks like an open relay from a bogus gmail account to somewhere in taiwan. section.txt
0
 
Cliff GaliherCommented:
Well you snipped a bit early. There is a clear "unable to relay" ...there is a bogus recipient line (the last line) to a .tw domain, and the connection is clearly tar pitted, but then the log ends and you didn't include the response. So I see NO line that would make me think your server is relaying.

0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now