Review of receive connector's settings

Our receive connector on Exchange 2010 is accepting dodgy emails which pretend to be sent from our own server which means if the dodgy email slips though - it will be seen as an internal one.

Example :
My domain : mygroup.co.uk

Sender's email address in dodgy email : no-reply@mygroup.co.uk

What should I untick on receive connector to stop this from happening ?
Juts now I have ticked :  Anon users, Exchange servers, legacy Exchange servers.
charlie_301Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Alan HardistyCo-OwnerCommented:
Can you describe a little bit more about the problem and what makes you think your server is accepting dodgy emails?

Your Public Receive Connector should only have Anonymous Auth enabled.

It could be just as simple as enabling Recipient Filtering and the problem will go away.

Alan
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Pete LongTechnical ConsultantCommented:
enable

Block messages sent to recipients that do not exist in the directory

You need the antispam agents installing

Exchange 2010 - Install Anti-Spam Agents

PL
0
charlie_301Author Commented:
I have unticked Exchange servers, legacy Exchange servers from anonymous receive connector so hopefully this should work from now.

I have enabled Exchanges' anti spam features - I had already enabled recipient filtering .
I also have Sophos Pure Message on the same server with Recipient Filtering enabled.

Alan : loads of users received spam email from an address no-reply@mydomain.co.uk
So based on previous settings, server accepted email message from outside with an address same as my own domain.
Recipients addresses were correct.
Senders address doesn't exist on our end not to mention that it shouldn't have been accepted as its not generated by our server.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

Alan HardistyCo-OwnerCommented:
Have you enabled an SPF record for your Domain and are you performing SPF checking on inbound emails?

If you haven't done both - please do, or install something like Vamsoft ORF Fusion (trial) to see how well that handles your Spam for you (we use it and all our customers have it on their servers and they love the lack of spam).

Alan
0
charlie_301Author Commented:
Hi Alan,

Yes, I've prepared SPF record already.
I have also started testing Vamsoft software few days ago - I'll try it again.

I've heard very good comments about it.

Just now, we are getting loads of spam every day, some of it slips though PureMessage's filters. Luckily Sophos license is due for renewal and I will try with Vamsoft - if it works I will bin Sophos PureMessage.
0
Alan HardistyCo-OwnerCommented:
Shout if you need help configuring it - I've done it a few times ;)

Alan
0
charlie_301Author Commented:
Brilliant, thanks.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.