Solved

Exchange Server 2003 on SBS 2003

Posted on 2014-11-23
6
169 Views
Last Modified: 2014-11-24
I am running Exchange Server 2003 on SBS 2003. Is there a way to have the server reject email sent to email addresses that are not real or active on my server?

I have seen many time reply's that state the user is not available on this domain, etc., I would like to get mine to do the same.

Thanks
0
Comment
Question by:sschlundt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 40460654
Enable recipient filtering on Exchange. If I remember correctly, by default the server will generate the appropriate NDR for non-existent users.
0
 

Author Comment

by:sschlundt
ID: 40460688
Cab you tell me where/how to do this? I have search through the exchange server admin setting and can't find it.
0
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 40460715
In the left pane of ESM, just below the organisation name, click on Global Settings. In the right pane, right-click on Message Delivery and choose Properties. Click on the Recipient Filtering tab and tick the box labelled "Filter recipients who are not in the Directory". Click Apply and OK, and OK your way back out.

Restart the Exchange services and you should be good to go.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 15

Accepted Solution

by:
Perarduaadastra earned 500 total points
ID: 40460735
Whoops, missed out a step...

After enabling recipient filtering in Message Delivery, still in ESM, expand Admin Groups -> Server (your server name) -> Protocols -> SMTP. Right click on SMTP Virtual Server and choose Properties. Under the General tab click the "Advanced" button next to the IP address. Click the Edit button and tick the Apply Recipient Filter check box. Click OK, and OK and Apply your way back out.

This will produce the results you are after.

However, be aware that these changes will make you vulnerable to directory harvest attacks, so Microsoft introduced a hotfix (now a part of Service Pack1) to enable a feature called tarpitting. This slows down the the server's response to such attacks to the point that such attacks take so long to execute that they aren't worth attempting.

Assuming that you have SP1 on your server, open Notepad and type in the following:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SMTPSVC\Parameters]
"TarpitTime"=dword:00000005

This will make the server wait for five seconds between each harvest attack request. Save the file as tarpit.reg; change the file type in Notepad to All Types to enable you to do this. Tarpit.reg.txt won't work!

Double-click on the file to import it into the registry.

Finally, restart the SMTP server service to activate the changes.
0
 

Author Closing Comment

by:sschlundt
ID: 40461100
Fast response and attention to detail. Great response. Thank you
0
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 40461565
My pleasure.
0

Featured Post

SharePoint Admin?

Enable Your Employees To Focus On The Core With Intuitive Onscreen Guidance That is With You At The Moment of Need.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Are you using email marketing software? If not, you're missing out on effortless marketing and the reaching of desired conversion rates through email marketing software.
It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question