Hi everyone, need your help with the following: Got a client that has 1 exchange 2007 server and at the moment we have got setup one Send Connector that only allows email to be sent to about 8 external client domains through a Smart Host (Barracuda). Now this client needs to get a couple of their users to send email to anyone externally to the internet so to any domain really, however everyone will still be allowed to send emails to those 8 external client domains. after reading about it some people speak about setting up a Transport Rule as it follows: Create a DL "Deny send mail to Internet" and add users to it. Create a transport rule with conditions "from a member of a DL" and "sent to people outside your org.", DL should be the one previously created.Action should be "send a bounce message...". now the problem is that this would deny all users expect those outside this DL to send emails to the internet as well as those external domains, this is not good for what i need. So i though can i create a Transport Rule to apply to a Specific Send Connector? Can i restrict via ADSI Edit who can use the Send Connectors this way i would create 2 different connectors, one for the internet all domains and only allow a few users to use it and the second Send Connector allow everyone to use it to send out to those 8 client domains? Can anyone advise on this for me, it would really be greatly appreciated. Exchange 2007 responses only please as i have had a lot of people talking about exchange 2003. Regards and thanks Carlos Gomes

Hi, Actually, we can create a Transport Rule as the below steps to resolve this issue. 1. In the Exchange Management Console, expand Organization Configuration, locate Hub Transport, in the right panel, in the Transport Rules, create a new Transport Rule. 2. Check "froma member of distribution list"option, specify the people come from the "Deny send mail to Internet" DL, check "from users inside or outside the organization" option, select Outside, click Next button, check "send bounce message to sender with enhanced status code" option, click Next button, check "except when the text specific words appears in a message header" option, please input the 8 external client domains. Thanks Allen

Thanks in advance Allen What if an email has on the header TO= Allowed Domain; and Not Allowed Domain, ie i allow to gmail.com but not to Hotmail.com will it send the email to gmail.com but deny to hotmail.com? What if it is CC= gmail.com do i have to add this to the exception as well? Let me know thanks Carlos

See this post for the workaround we came up with. http://forums.microsoft.com/TechNet/ShowPost.aspx?PostID=3408826&SiteID=17&mode=1 in the meantime i am still waiting on some feeback on my previous question about Amit and Allen reccomendation. thanksCarlos

Hi, I understand that your dilemma in this issue. Actually, we can deploy Two Edge servers role and two send connectors to resolve this issue. This is because the email was sent via the connector. When it selects a Send connector, routing only considers connectors that have a matching closest address space for the destination domain. This work around is the following settings: First deploy two Edge servers, then creating the corresponding Edge Subscription between the Hub Transport Server and Edge Server. We assume the Edge server named Test1 and Test2. Understanding Edge Subscriptions http://technet.microsoft.com/en-us/library/bb124096(EXCHG.80).aspx In the Hub, you will see there have two send connectors: EdgeSync and Send Connectors http://technet.microsoft.com/en-us/library/bb266920(EXCHG.80).aspx 1. A Send connector that is configured to relay e-mail messages from the Exchange organization to the Internet 2. A Send connector that is configured to relay e-mail messages from the Edge Transport server to the Exchange organization Then please modify the connector to the Internet, ensure the Source Server is one of the Edge server, Test1 or Test2. The default address space should be * After that, please create another send connector which specifies the other Edge server as the Source Server, and then input the 8 external domains address in the Address Space. The following steps is set the same transport rule on the Edge server which is the source server of * address space based on the last suggestions. Open Exchange Management Console in the Edge server, in the Transport Rules tab, please create the Transport Rule. Overview of Transport Rules http://technet.microsoft.com/en-us/library/aa998860(EXCHG.80).aspx Thanks Allen