Creating open SMTP relay

Good Morning,

I have come across a bit of an issue that I'm hoping you experts can help me with. I have a batch of customers which have recently changed their internet connections to an ISP that has no SMTP relay on it's network. This is quite a big deal so I've decided to turn an old Exchange 2007 box into an open SMTP relay in my customers can use to relay mail out onto the internet. The plan is to have the SMTP relay at my offices for better control and this is on a different network/ISP altogether.

I have created an A Record smtp.domain.co.uk and pointed at our Public IP address so I'm guessing that's set up correctly.

Does anybody have any ideas on how I can achieve this? I do have a Public IP range for the customers networks so it doesn't have to be totally open as long as these public IP's can use our server as an smtp relay I can't see it being a problem.

Many Thanks,

Chris.
ChrisRoberts86Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Miguel Angel Perez MuñozCommented:
Creating an open relay causes spamers uses to send spam. And, your server will be listed on blacklisted or as a open relay.
Consider ask to ISP for a smtp relay provided by. Per example, Telmex does not permit dynamic ip address send smtp but provide a relay with user and password.
Finally if you want to create your relay, this post may help you: https://confluence.atlassian.com/display/JIRA/How+to+Set+Up+SMTP+Relay+in+Exchange+2007
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
David AtkinTechnical DirectorCommented:
I'd strongly advise against using your Exchange for an open relay as well.

Have a look at other third party SMTP relay companies.  I use http://www.authsmtp.com/ for a couple of my linux servers.  There is an annual price for the service but I've found them to be reasonable for what I do.  Double check before signing up though!

Another suggestion is tempting your customers with an email filtering service. You'll get best of both worlds here, your customer will get reduced spam from inbound filtering and they'll get an outbound smtp relay.  I have had a good experience with Spambrella (UK Based).

If you are going to go ahead with creating a relay then make sure that you define your customers external IP's so that you don't get random spammers using it.
0
ChrisRoberts86Author Commented:
Many thanks for this, I was able to create a locked down relay for the public IP address range I needed as well as adding some encryption to it.
0
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
What you should do is convince/educate your clients to use SMTP servers but ensure to authenticate.  If you wish to let your users use your Exchange server then ensure to configure your server to require authentication as well as ensure to only allow relay for specific IPs (i.e. your clients Internet connection IP).  Even then your customers may experience issues using your Exchange server if there are SPF, reverse DNS records, etc. are missing.  Best is to use a provider that sells services such as SMTP.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.