Managing Active Directory does not always have to be complicated. If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why
Controlling outbound mail flow by server
We are new to this client and the previous provider set up three exchange servers for different purposes. 2 for delivery of bulk mail (they send subscribed advertising) and one more for the internal users. Each is a mailbox server and a hub transport server. They are each NAT'd to their own external IP in order to protect the users' server from the blocks that happen on the bulk servers.
The problem is that the outbound delivery does not work like that and all hub servers are automatically distributed and users email is being sent by the bulk servers (and then getting blocked).
What is the best way to fix this without adding additional servers as edge servers? Is there a way?
Thanks in advance
~Jon
The problem is that the outbound delivery does not work like that and all hub servers are automatically distributed and users email is being sent by the bulk servers (and then getting blocked).
What is the best way to fix this without adding additional servers as edge servers? Is there a way?
Thanks in advance
~Jon
Asked:
Who is Participating?
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with premium.
Start your 7-day free trial.
I wear a lot of hats...
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
Thanks Will. Follow up idea. If I break the business location in to multiple AD sites and then put the bulk mailers in that new site, would that keep the user server from utilizing the bulk mailer's hub server role?
I realized after posting that even adding edge servers would not help because I still cant depend on which hub it comes from, right?
Thanks!
I realized after posting that even adding edge servers would not help because I still cant depend on which hub it comes from, right?
Thanks!
If I break the business location in to multiple AD sites and then put the bulk mailers in that new site, would that keep the user server from utilizing the bulk mailer's hub server role?
Even if you were to do this there is still a possibility that it could route through these HT servers. This would also be true if you only had 1 internet facing site in your Exchange environment.
If these servers need to be completely isolated create a forest root domain and spin up new exchange servers in there. For the purpose of isolating your HT traffic.
Will.
They are running 2007 right now, VERY long story, but they were on 2000, now 2007, soon migrating to 2013+
Hi Jon,
In certain circumstances there are things you can do. for example...
If you have the two bulk email servers in a separate AD Site as the users server, and configure separate send connectors for each site, this SHOULD effectively resolve your issue.
To break it down:
ServerA (User Mailboxes) in Site 1. Configure a Send Connector called "Users Mail" and scope the source server as ServerA's IP address.
ServerB and ServerC (Bulk Mailers) in Site 2. Configure a Send connector called "Bulk Mail" and scope the source servers with the bulk mail server IP's.
In Exchange 2007, when a mail is submitted to the submission queue, exchange will try load balance with any HUB servers in the same site. By segregating the sites you can potentially avoid this.
However, from exchange 2010, this becomes more difficult. As they introduced shadow redundancy, exchange will always try sending out of another Hub server so there are duplicate copies of a mail during transport. So an additional server in the user site would be a recommendation going forward. Since EX2010 uses site costing, it should always only go to the new local hub server.
However, in saying this, there is always the potential of mail routing through the alternate site, but this would only really be in the case of service failure.
Regards
Guy
In certain circumstances there are things you can do. for example...
If you have the two bulk email servers in a separate AD Site as the users server, and configure separate send connectors for each site, this SHOULD effectively resolve your issue.
To break it down:
ServerA (User Mailboxes) in Site 1. Configure a Send Connector called "Users Mail" and scope the source server as ServerA's IP address.
ServerB and ServerC (Bulk Mailers) in Site 2. Configure a Send connector called "Bulk Mail" and scope the source servers with the bulk mail server IP's.
In Exchange 2007, when a mail is submitted to the submission queue, exchange will try load balance with any HUB servers in the same site. By segregating the sites you can potentially avoid this.
However, from exchange 2010, this becomes more difficult. As they introduced shadow redundancy, exchange will always try sending out of another Hub server so there are duplicate copies of a mail during transport. So an additional server in the user site would be a recommendation going forward. Since EX2010 uses site costing, it should always only go to the new local hub server.
However, in saying this, there is always the potential of mail routing through the alternate site, but this would only really be in the case of service failure.
Regards
Guy
Experts Exchange Solution brought to you by
Your issues matter to us.
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
Start your 7-day free trial
Thanks Guy. This helps a lot and was sort of what we were seeing. The customer sends 50K+ emails a day and is concerned that the volume may trigger a failover to another site also. Please with going toward 2013, your other point becomes an even bigger problem.
I think that we are going to rebuild one exchange server as a redundant server to the user server and put the undeliverables mailbox there. Then take the third server and rebuild it with a software package specifically geared towards accomplishing this goal. I think that may be a better use of resources.
I think that we are going to rebuild one exchange server as a redundant server to the user server and put the undeliverables mailbox there. Then take the third server and rebuild it with a software package specifically geared towards accomplishing this goal. I think that may be a better use of resources.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange
From novice to tech pro — start learning today.
-
Microsoft ApplicationsCertification: MCP MCSA Microsoft Certified Partner & Solutions Ass… 377 lessons
-
Business CommunicationCertification: PMI RMP Project Management Institute Risk Management… 113 lessons
-
Microsoft ApplicationsCertification: MOS Microsoft Office Specialist - Word 2013 Part … 198 lessons
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with premium.
Start your 7-day free trial.
So if you do not want Exchange servers to not communicate this way they need to be in a separate network/domain.
Will.