Avatar of Miffanwee
Miffanwee
 asked on

Exchange 2013 Stop Spoof Emails from Internal addresses

New migration from Exchange 2010 to Exchange 2013 latest patch.
Symantec Mail Security for Exchange (latest version).

Internal users receiving small amounts of phishing emails from spoofed domain email address.
e.g. user1@microsoft.co.uk recieves email from user2@microsoft.com claiming to be internal user.
If you click reply then the reply address is obviously a different email domain account (malicious user).

This is a single installation of Exchange, internet facing.

In an earlier post Simon Butler suggested that this installation is "fine"....and also quotes...

"Sender ID etc is no good unless you have your own domain setup correctly.
You need to put in SPF records in to the DNS. If your internal DNS domain name matches your external then you will also need SPF records on your internal DNS. "

Please can anyone explain this further?

Is there anywhere written that explains exactly how to stop this behavior in Exchange 2013?

Also I noticed that in my Exchange Admin Centre, under "protection" section  I cannot see "antispam" feature installed, only "MALWARE feature".
In Exchange 2010 Antispam settings were setup correctly, but I cant find them in Exchange 2013.

I should note that these phishing emails are going into Outlook client "junk" folder, but still I would like to be more protected.
Exchange

Avatar of undefined
Last Comment
Miffanwee

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Vincent Burton

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Miffanwee

ASKER
woo, thanks.
I will have a read through that lot!
Built in 2013 Antispam? I cannot find it in my installation.
Miffanwee

ASKER
aha, i need to install using a script!
Vincent Burton

Microsoft Exchange Server 2013 customers are automatically provided with anti-spam and anti-malware protection to get in detailed please check this: https://technet.microsoft.com/en-us/library/jj150481%28v=exchg.150%29.aspx
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck
Miffanwee

ASKER
Why on earth has Microsoft turned this AntiSpam stuff into Poweshell interface???
Miffanwee

ASKER
Hi Vincent,
Many thanks for your advice.
Could you explain the " block your own domain with sender filtering:" bit?
That's a bit confusing.
Miffanwee

ASKER
Many thanks for help on this matter
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.