Allowing 3rd Party External Databases to email to Internal using an Internal email Address

All,

I wander if anyone can help with this.

We have an external database hosted by a 3rd Party,
This database sends emails to our internal staff via it's own smtp service and needs to send from an internal email address (spoofing)
Currently we have a Spam Appliance that blocks Spoofed emails so this is causing problems.
We have Exchange 2007

I need to find a solution to this as we now have 3 different external databases with 3 different supplier that all need to do the same and this is likely to increase.

The options I have currently got are:
1. Allow Spoofing into the company (we get way too much spam and phishing if i do this so want to avoid this option)

2. Whitelist the IP address of the SMTP service to stop any emails from being blocked (The IP's are shared with other services and companies so would be potentially allowing SPAM and Viruses should those services become compromised, etc)

3. Allow the External databases to connect directly to our internal Exchange Servers and email from these.

4. Force the database servers to email as some other domain (apparentely not an option!)

Can anyone advise me of any other options that i have missed?
Does anyone know how I could allow option 3 and ensure that everything is secure as possible?


Thank you for your help

James
CRI-ITDeptAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

LeeDerbyshireCommented:
I've never tried either, but you might look at using SSL or Authenticated SMTP (on the assumption that your appliance would not block either of these).
0
suriyaehnopCommented:
1. As i normally did is to trust their IP address. In my case theie IP address wasn't share with other applications.
2. Introduce that application database in-house rather than external.
0
CRI-ITDeptAuthor Commented:
Thanks for your answers.

We had to use sendgrid to do this and then whitelist the Unique IP address they gave us.

Thanks
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
CRI-ITDeptAuthor Commented:
Closed
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.