Solved

Do i need to restart the Exchange services after tweaking anti-spam rules or installing spam filter updates through windows update or does it automatically take effect?

Posted on 2014-10-30
6
312 Views
Last Modified: 2014-11-10
I am running Exchange 2010 on a Windows 2008 R2 base server.

We have been getting a ton of spam from spoofed email domains and i enabled Sender ID filtering to prevent this but after i hit apply i still got some spoofed email a few minutes later and was wondering if i needed to restart the exchange services.
0
Comment
Question by:Blake Weaver
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 8

Expert Comment

by:tshearon
ID: 40413892
They should take effect after you apply them. There should be no reason you'd have to restart any services.
0
 
LVL 6

Assisted Solution

by:Asif Bacchus
Asif Bacchus earned 500 total points
ID: 40414094
I usually like to restart the Transport Service, just to make sure things 'stick'.  This is a quick and easy service to restart, so you won't really have any downtime, etc.

As a side-note, double-check to make sure you enable Recipient Filtering and check the box "Block messages set to recipients that do not exist in the directory" in the "Blocked Recipients" tab.  This on it's own usually cuts your SPAM down dramatically.
0
 

Author Comment

by:Blake Weaver
ID: 40414234
Thanks Asifbaccus.  Yes i already have the checkbox checked(block messages set to recipients that do not exist in the directory) but i have still been getting spam from internal addresses which i cant understand.
0
Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

 
LVL 6

Accepted Solution

by:
Asif Bacchus earned 500 total points
ID: 40414256
Are you sure these emails are not actually originating from within your network?  Have you checked the headers on one of them to make sure?  Many trojans and malware infections setup a little mailserver on clients and then SPAM internally.  That way they get around Exchange SPAM checks.

If you have a firewall capable of monitoring and controlling outgoing connections, I usually setup a rule to prevent any source IP address from sending via port 25 except the Exchange server to avoid such problems.

Otherwise, you're right, SenderID may help you out.
0
 

Author Comment

by:Blake Weaver
ID: 40432815
The second comment was a great thought but as soon as i implemented an external third party spam filter it caught all the spoofed address emails.
0
 
LVL 6

Expert Comment

by:Asif Bacchus
ID: 40434024
Glad you got it all sorted out... SPAM is such a pain! Cheers.
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question