Solved

Do i need to restart the Exchange services after tweaking anti-spam rules or installing spam filter updates through windows update or does it automatically take effect?

Posted on 2014-10-30
6
327 Views
Last Modified: 2014-11-10
I am running Exchange 2010 on a Windows 2008 R2 base server.

We have been getting a ton of spam from spoofed email domains and i enabled Sender ID filtering to prevent this but after i hit apply i still got some spoofed email a few minutes later and was wondering if i needed to restart the exchange services.
0
Comment
Question by:Blake Weaver
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 8

Expert Comment

by:tshearon
ID: 40413892
They should take effect after you apply them. There should be no reason you'd have to restart any services.
0
 
LVL 6

Assisted Solution

by:Asif Bacchus
Asif Bacchus earned 500 total points
ID: 40414094
I usually like to restart the Transport Service, just to make sure things 'stick'.  This is a quick and easy service to restart, so you won't really have any downtime, etc.

As a side-note, double-check to make sure you enable Recipient Filtering and check the box "Block messages set to recipients that do not exist in the directory" in the "Blocked Recipients" tab.  This on it's own usually cuts your SPAM down dramatically.
0
 

Author Comment

by:Blake Weaver
ID: 40414234
Thanks Asifbaccus.  Yes i already have the checkbox checked(block messages set to recipients that do not exist in the directory) but i have still been getting spam from internal addresses which i cant understand.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 6

Accepted Solution

by:
Asif Bacchus earned 500 total points
ID: 40414256
Are you sure these emails are not actually originating from within your network?  Have you checked the headers on one of them to make sure?  Many trojans and malware infections setup a little mailserver on clients and then SPAM internally.  That way they get around Exchange SPAM checks.

If you have a firewall capable of monitoring and controlling outgoing connections, I usually setup a rule to prevent any source IP address from sending via port 25 except the Exchange server to avoid such problems.

Otherwise, you're right, SenderID may help you out.
0
 

Author Comment

by:Blake Weaver
ID: 40432815
The second comment was a great thought but as soon as i implemented an external third party spam filter it caught all the spoofed address emails.
0
 
LVL 6

Expert Comment

by:Asif Bacchus
ID: 40434024
Glad you got it all sorted out... SPAM is such a pain! Cheers.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
This article will help to fix the below error for MS Exchange server 2010 I. Out Of office not working II. Certificate error "name on the security certificate is invalid or does not match the name of the site" III. Make Internal URLs and External…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
Suggested Courses
Course of the Month9 days, 17 hours left to enroll

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question