Webcc
asked on
Excessive SPAM on Exchange server
We are averaging around 22-25% of SPAM on our Exchange 2010 server. Is there a best practices document for locking down Exchange (receive connector, smarthost, reverse DNS, etc)? Not an open relay, but think server is not as tightly secured as it needs to be. We are using Trend Micro's Antispam along with the built-in Spam filter that comes with Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Have the antispam filtering installed on the transport server. Seems that they work better if you have an Edge transport server. Will try to setup IP Blocklist providers. Hopefully, they will work.
How should the Receive connectors be setup optimally?
Have just the default and client connectors.
Default: Authentication tab --> TLS, Basic, Exchange Server and Integrated are selected.
Permissions tab --> Everything selected except Partners
Client: Authentication tab --> TLS, BASIC and Integrated are selected.
Permission tab --> Everything selected except Partners
We have an SSL cert for our site.
How should the Receive connectors be setup optimally?
Have just the default and client connectors.
Default: Authentication tab --> TLS, Basic, Exchange Server and Integrated are selected.
Permissions tab --> Everything selected except Partners
Client: Authentication tab --> TLS, BASIC and Integrated are selected.
Permission tab --> Everything selected except Partners
We have an SSL cert for our site.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Also it would be better if you implement a transport rule in such a way
That messages from users outside the organisation to the users outside the organisation
set the status as reject as spam will do the work for you.