Solved

Exchange 2010 - Prevent internal machines from using as a smart host

Posted on 2012-03-12
4
370 Views
Last Modified: 2012-03-25
The developers in our environment continue to point various servers to our production email server to send test emails.  All of these emails stay internal, so they aren't relaying.  Is there anyway to prevent them from doing this?
0
Comment
Question by:hdfanatic
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 41

Expert Comment

by:Adam Brown
ID: 37710764
The IP Address ranges on your Receive Connectors determine which systems can send mail to your Exchange Server. If you remove the internal network's IP range from the list of IP addresses on your Receive Connectors for port 25, it will prevent the Exchange Server from accepting mail from those clients. In order to send mail from an internal server to your exchange server, they'll have to ask for approval.
0
 

Author Comment

by:hdfanatic
ID: 37711188
OK, so I currently have 3 connectors on my Hub/CAS server.  They are as follows:

Client ServerName - Presume this is used by Outlook clients
Default ServerName - Presume this is the connector I need to modify
Relay Connector - This has all the machines that need relay access

My only concern is knowing what other machines are using this Default connector so I can make sure to list every IP needed.  Do my other Exchange servers use this connector (2003 boxes and Edge)?
0
 
LVL 41

Accepted Solution

by:
Adam Brown earned 200 total points
ID: 37711274
The Default one is the one you'd want to modify. You'll want to add all external IP addresses and all internal IP addresses that would communicate with port 25. This does include other exchange servers.
0
 

Author Closing Comment

by:hdfanatic
ID: 37763267
Thanks for the help.
0

Featured Post

[Webinar] Learn How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
how to add IIS SMTP to handle application/Scanner relays into office 365.
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question