[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now



Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hello people,

In my Exchange 2013 after we configured the anti spam solution, we cannot receive emails.

I checked the configuration and it is not working...we made some changes in the receive connectors.

Do you have any clue where to start?
Free Tool: Subnet Calculator
LVL 11
Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

We are providing antispam service to few clients using our builtin antispam in our server.
Now customers requesting for interface to release the quarantined emails.

Is there any antispam software you guys know which can provide interface and filter spams?


I've a problem with bounce back when i send a mail with a distribution group and the recipent address is faulse, i don't receive the bounce back.
technical context :
2 Exchange server 2016 standard without edge in DAG
Antispam Exchange ENABLED
my external mail are filtred by an antispam gateway

My antispam gateway send me the bounce back, my  server1 create event HARECEIVE the mail and create an event HADISCARD and the mail is DROP by the server1 or the server2.
do you have already meet this case ?

Thanks for your help!

I am using exchange server 2010. When I sent email, a header is added in mail. When analyse the header, it gives the information of My MailServers private IP, Host name and other private information which breach in security. Also, if some one send mail to us and goes bounce back because of some reason, it also gives the full informatiom about my private IP As shown below. Instead of Private IP, If public ip is shown, its OK But I want to hide. It will be very much good if it could be like attached file.

1. Any local IP
2. Server Hostname

Delivery has failed to these recipients or groups:

MyName(GV) (myName@example.com)
The e-mail address you entered couldn't be found. Please check the recipient's e-mail address and try to resend the message. If the problem continues, please contact your helpdesk.

Diagnostic information for administrators:

Generating server: hmlmumbai.local

#550 5.1.1 RESOLVER.ADR.RecipNotFound; not found ##rfc822;myname@example.com

Original message headers:

Received: from hmlmumbai.local.hmlindia.com (<Local IP>) by
 HubTransport.Domain.local (Local IP of Transport) with Microsoft SMTP Server (TLS) id
 14.3.301.0; Tue, 24 Oct 2017 14:03:26 +0530
X-ASG-Debug-ID: 1508833996-05f7ce6e4a016f0001-QWa99X
Received: from mail-qt0-f177.google.com (mail-qt0-f177.google.com
 []) by hmlmumbai.local.hmlindia.com with ESMTP id
 MaJLwpyu0xxKvgoI (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 …
Hi Experts, AFAIK there are 3 ways to anti-spam to an Exchange 2016 environment: SPF, DKIM and DMARC

I can configured SPF record on domain control panel but not sure about the 2 others, does anyone have experience with them? Can we configure them on Exchange mailbox server, or public DNS of ISP?

Many thanks in advance,
When we send an email through our company it is very commonly flagged as junk by the recipient. Can this be fixed? What do i need to do to fix this? We're using exchange from our own in house server. No we dont mass email people. We have never been hacked and used as a bot that im aware of.  Our in coming does go through an online spam filter.
Hi All,

Can anyone here please let me know what do I need to do in order to successfully cutting over the Anti Spam solution from onPremise Linux VM into the Cloud Solution with no data loss or user email flow interruptions?

As at the moment on my Exchange 2013, the Send Connector Smarthosts listing the local IP address for the 2x Linux VMs.

Do I just change it to the Public IP address of the Cloud Anti-Spam provider ?

Note: My Public DNS server is running on my On-premise Windows Server 2008 R2 VMs.

A client's email can't reach our server due to SPF record check.
xxx.com does not designate permitted sender hosts

The client's SPF is

v=spf1 a:research.tenxxx.com include:spf.protection.outlook.com include:spf.zixxx.com, include:servers.mxx.net -all

Is there some wrong for the record ?

A sender try to pretend our email domain (eg. abc.com) but add a subprefix on it (ie, mail.abc.com) which in fact we doesn't use it.

The sender email is in fact come with @brisanet.com.br but in Outlook, it only show the fraud email address, (ie. @mail.abc.com) within any information for the sender's actual email address.

SPF check has been enabled in our server and it can't block it. Is it because of the sender using mail.abc.com instead of abc.com which allow him to pass the SPF check.

Any chance that we can block this type of fraud mail ?

We have 2 Exchange Servers 2010 SP3. One is installed on Windows Server 2008 R2 and other is installed on Windows Server 2012 R2. I have enabled Antispam settings on hub transport on both exchange servers, all settings are enabled. We don't have edge transport server.
Users are getting spam emails with some particular contents in emails. As CEO asked me to create a rule so that emails with those contents or subject should be filtered out and blocked. So,  i added that phrases from spam email into content filtering properties under "Block messages containing these word or phrases" and enabled Delete messages (SCL Rating >= 8), Reject Messages (SCL Rating >= 7), Quarantine messages (SCL rating >=6). Also defined Quarantine  Mailbox Email. Then i send a message with same contents (which i added in block messages) in email from my gmail in order to test but the message was not blocked and i received the message in my corporate email. It was supposed to be blocked but it didn't.
New Tabletop Appliances Blow Competitors Away!
New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

we have a client using SBS2011 with on site Exchange 2010.  they are using trend worry free business advanced anti virus/spam on the server.

there is a particular external sender who cant send our client emails.  there's no bounce back message, the message doesn't appear to even hit the server according the exchange message tracker, i also queried Trends spam filter and nothing from them appears to be quarantined.  i disabled Trend spam filtering but as of yet still nothing.  i can send to the client fine but it seems to be this one sender who cant, and its to any email address with the clients domain not just a particular person.  ive also checked blacklisting for sender and receiver which are clear and i've white listed the senders IP and domain in Trend.

the sender has tracked the message they sent and its saying it has left their servers, so not quote sure whats going on.
Earlier today I got rid of the search.yahoo.com redirect. I ran avast smartscan and malwarebytes, and I've rebooted. It's only on Google Chrome, and there are no extra extensions installed. Any ideas? Thanks.

we have very recently switched from a barracuda antispam appliance to using exchange online protection. we are a hybrid config with no mailboxes yet migrated to on-line.
I'm having an issue trying to get the spam scoring to "work". i.e. I get messages with the scl set to 6 in the header but they are not going to the junk folder as desired. we have had 2 microsoft tickets on the topic.
first thing, after reading an online article, we added 2 transport rules to our on-prem that are supposed to take anything with an scl of 6 and move it there. then Microsoft told my boss to turned off the users ability to set junk filter properties and have it set to disable.
second, today they told me it wont ever deliver them to the junk folder so I have set it to quarantine, which we really don't want unless its the only option.

surely there has to be a way to have the junk folder work... I'm attaching a screenshot of the automation advice when I opened todays ticket and had the message analyzed in case it helps.
I will split points as equally as I can, this is asking for an opinion.

My website/email server hoster has recently introduced a spam filter on their servers.  This spam system has decided experts-exchange.com has started to spam me.  Apparently because the concerning information is often very similar (probably Question alert:, Help Answer:....) and because the body of the text sometimes contains unrecognisable words (possibly things like: what does for(int x=1;x<q*q;x+=3){q=foo(x);} mean).

Now comes the fun bit.
I have asked if I can white list the email address.  No, the spam filter works only with IMAP and is self learning.
I have pointed out I use POP3.  The spam filter works on all emails both POP3 and IMAP, but only learns on IMAP.

My opinion is that this filter is well meant but actually a terrible idea.  What are your opinions.
I had a spam problem about a month ago, which I fixed on my end.  I notice now that email I send to recipients at gmail are automatically being marked as spam.

My mail server is Unix - Communigate Pro running on an old PowerMac. Outbound mail goes to my SMTP server, which is a Dell SonicWall ES-3300    I changed the IP address after the spam got past the SonicWall, and put the new address into my DNS, which is hosted by DYN.com

I looked at the header of a message I sent to my gmail account.  I see something wrong with the SPF record  

X-Mlf-Uniqueid: o201708020314430029673
Arc-Seal: i=1; a=rsa-sha256; t=1501643684; cv=none; d=google.com; s=arc-20160816; b=fxKfyh5i6PzjoNNZkIMPSigH31cy4YQ3IwPn/XLlJekZPjdgLTVrCmwlzwGh2orLVN GAg7JYp8zmTIKmoj2fOo5/v5m9m+aMH16VJDa7PKxY2H5qYRt9OHehY+o6UqP95Il9lz 3/cqc1G6Fo+j3t0oCCa8H/JW4+03+o3X9nlX+ioY6gOoFGy7GtWzW4OJpxiJZUjxhtxp FgenvR03ekg/ZHQv7j3P/FIoDPhoQK/EzgofSx6a7qKwl0D4jY8YzBVvcQjfHYaJV96j porICVs9nghyv8bE7Oy34UxkqG3ZLJznTB4WqAmYzkC8Nw3duZRcC8G0B+ZXQXz1s7mi Jz0A==
X-Received: by with SMTP id p85mr27288566qki.281.1501643684625; Tue, 01 Aug 2017 20:14:44 -0700 (PDT)
Return-Path: <prvs=138714c1e1=larry@computerlarry.com>
Arc-Authentication-Results: i=1; mx.google.com; spf=softfail (google.com: domain of transitioning prvs=138714c1e1=larry@computerlarry.com does not designate as permitted sender) smtp.mailfrom=prvs=138714c1e1=larry@computerlarry.com

We are looking for a email filtering solution and have been speaking to mimecast and proofpoint (enterprise version with TAP). Having had sales style demos both products look very similar so wanted so real world guidance.
We currently have 365 for email with EOP and it is doing a very poor job of filter spam, virus attachments and protecting against targeted phishing (fake CEO)
User was tricked at home, he took the whole bait and hook, paid $ to a fake Microsoft person and allowed them on his computer. Anyway after running some tools and removing malicious malware he still has on his desktop a fake phone number that shows on his Task bar area. This is a Vista O.S. how do I remove?
I will be reformatting the computer in a  couple week.

I am doing some testing of spam filtering solutions. Is there a service that will just send you spam to an email address? Thanks.
We have a Barracuda spam/Firewall 300 here that's got about 30,000 blocked/deferred messages in the outbound queue that I need to get deleted. I can't even bring up the outbound queue in queue management. I spent over an hour with Support and they cant connect with the guy couldn't figure out how to connect with it....that's a different issue. How can I clear these out? Its killing our mail throughput?? I know its got SSH but I can't connect to it. I'm not local to the system but I've got full admin rights. I cant even pull the export out of it.
The Evil-ution of Network Security Threats
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

I manage a small network (84 users) We currently have a Barracuda Email Security 300 that is getting a bit long in the tooth and is in need of replacement. So, with that said I am looking at Fortimail (Because we have a Fortigate 200D) and Barracuda Essentials for Email Security.

I do know that in terms of price that Barracuda solution is cheaper but I hate having to evaluate based on price (But that's what the higher Up's see) Has anyone used the Fortimail solution? is it more or less the same compared to the Barracuda solution? I do think both offer "sandboxing" and that is something I am interested in..
Dear Experts,

My clients and I tried to send emails to proofpoint customers but they get deferred or delayed.

I have done a blacklist check and our IP address is not blacklisted.

Is there anyway to contact proofpoint and inform them about this and get it resolved?

Looking for suggestions for the best anti-spam solution (software, not hardware)

Currently using Spamexperts, but still receive 5-8 spam messages per week, perhaps this is the best possible without blocking valid / clean messages?

I am looking for a hosted solution.

Thank you,

Any good free anti virus software that i can download and install on my window 10 laptop?
any good reliable dependable ones for free. please advise
Hi Guys,

We recently acquired the Antispam (CASS2.0) for SonicWall TZ400.
The feature has been installed and configured, but not yet enabled.

I just need some basic understanding and information from someone re the TZ400 Antispam feature.

1.  Our mail does not currently spool via the TZ400 router, it comes via another gateway.   I gather that we have to change our MX to route mail via the TZ400 for the antispam feature to work?

2.  Once mail packets pass via the SonicWall router, will the TZ400 pick up the mail traffic from the NAT rule for port 25 automatically?

3.  We will be using the current gateway as secondary MX (fail-over).  Any other suggestions regarding the config and first hand experience?
I am at wit's end with something that I cannon understand is happening.

My boss signed -up for a newsletter from a website called "fisherynation.com". This news sites send several email out per day and they will not go into my bosses Outlook 2016 Inbox but rather to the Junk-Email folder. Here are the steps I have taken:
- In Junk Email Options, set to "No Automatic Filtering"
- Added fisherynation.com domain to "Safe Senders List"
- In Outlook Web Access (OWA) under setting for "Block or Allow" is set this to: "Don't move email to my Junk Email Folder"
- In Exchange Administration, Mail Flow.. I created a "Bypass spam filtering" for the sender of the emails in question.

Noe of this works! This particular sender of email is the "one and on;y" emails to go into his Junk Email folder. nothing at all besides.

Maybe this is a bug in Outlook 2016? Any ideas anyone?



Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.

Top Experts In