Blocking emails by sender IP Address (Exch 2007)
While MS offers a lot of nice anti-Spam features in Exchange 2007 on SBS, I can't seem to find a way to block email (in Exchange) by individual IP addresses. I see the "Block List Provider", but it doesn't appear that you enter the actual IP's to
block there, just providers (such as the RBL's I've been using).
I have a list of 100+ IP addresses and IP ranges that I normally block at the firewall, would love to be able to load it into a method in Exchange....
What am I missing?
You can't trust your best friends, your five senses, only the little voice inside you that most civilians don't even hear -- Listen to that. Trust yourself. (remove 999 for proper email address)
January 20th, 2011 8:43am
Enable the Recipient Filtering functionality to block emails addressed to invalid recipients.
In this manner emails will be rejected immediately without generating an NDR.
You can only do this if Exchange is receiving internet email directly.
If you have the Ex2007 Edge Transport go to:
Microsoft Exchange | Edge Transport | Anti-Spam
Otherwise for Ex2007 Hub Transport install the anti-spam agents:
go to:
Microsoft Exchange | Organization Configuration | Hub Transport | Anti-Spam
Open the properties for Recipient Filtering and tick the checkbox:
‘Block messages sent to recipients not listed in the Global Address List’
if the e-mail messages from specific IP address are always blocked by the Connection Filter agent, Exchange will automatically
put it on the IP Block List.
Unlike previous versions, in Exchange 2007 SP1, IP Allow and Block lists are transport server specific. So your three hub servers may have different block addresses. We can configure it at Server Configuration - Hub Transport – server-- anti-spam
Hope this helps. Thanks,
Ripu Daman Mina | MCSE 2003 & MCSA Messaging
Free Windows Admin Tool Kit Click here and download it now
January 20th, 2011 9:03am
In article <cb3ac56b-1718-4015-99f8->, Ripu Daman says...
Enable the Recipient Filtering functionality to block emails addressed to invalid recipients.
In this manner emails will be rejected immediately without generating an NDR.
You can only do this if Exchange is receiving internet email directly.
I can't do this as the information says that it blocks emails of users that are not listed in the primary GAL - I have 4 GAL and users of each company show up ONLY in the GAL they are named for.
My understanding is that if I enable this, that the email will be blocked if they are not in the default GAL.
Unlike previous versions, in Exchange 2007 SP1, IP Allow and Block lists are transport server specific. So your three hub servers may
have different block addresses. We can configure it at Server Configuration - Hub Transport ? server-- anti-spam tab.
That's the one I missed finding, should have seen it, that's exactly what I was looking for.
Thanks - L
You can't trust your best friends, your five senses, only the little voice inside you that most civilians don't even hear -- Listen to that. Trust yourself. (remove 999 for proper email address)
January 20th, 2011 9:52pm