February 20th, 2004, 02:36 PM
Filtering Exchange 5.5 E-mail
Hey folks, Can you guys give me some ideas on how to block e-mail messages coming in through our mail server. Is there some kind of filtering software I can use. Right now I am using exchange 5.5 and we are recieving tons of spam due to all the viruses that are coming out. Your help is appreciated...
February 20th, 2004, 02:42 PM
February 20th, 2004, 02:52 PM
thanks for the links
hey thanks for the links. You know of anything that will install on a linux box and filter? my company is budget that I have no control over. :-(
February 20th, 2004, 03:50 PM
I'm confussed, are you running an Exchange 5.5 server on your Linux box?
The best mail server on Linux that I know of is QMail
Documentation can be found here:
One of several spam blockers for QMail is SPAMBaffle
February 20th, 2004, 04:01 PM
I am running Exchange 5.5 on a NT4 enviroment. I was just thinking is there such a thing where I can use a linux box as my internet mail gateway with some program to block spam. So before it delivers to my Exchange hopefully it catches most spam.
February 20th, 2004, 04:26 PM
I'm afraid that now you are starting to complicate things here. As far as I know of there is no way of filtering mail before it reaches the mail server, because filtering is the mailservers job.
The best thing to do would be to use one of the links provided earlier on in order to then install/configure some type of filter onto the Exchange Server.
Try and get a hold of Gore, he knows a lot about Linux servers. He might know of some trick that would allow you to filter mail without a mail server.
February 20th, 2004, 06:55 PM
MrLucifer- Yes you can run a linux server in front of your exchange server to filter mail for you.
The best applications that I am aware of to block spam on a unix(linux) based system are spamassassin or perlMX.
PerlMX runs ontop of sendmail. Here is an article that describes it in detail-http://www.perl.com/pub/a/2001/10/10/perlmx.html
All of the mail filtering packages for Exchange require a license to be purchased. If you were going to go the route of putting a 3rd party service on top of exchange, i would recommend upgrading to exchange2000 before putting any 3rd party filtering software on the server. Exchange2k has major improvements over 5.5 in 3rd party filtering functionality.
So basically what you will need to do is change your inbound DNS MX records to point to your new linux server instead of the IMC connector on the Exchange5.5 server. On the linux server I would recommend setting sendmail up to only receive mail at the domains that you host(no relay). Then hardcode the information into sendmail about your exchange5.5 imc in your hosts file. You want to make sure that the linux server is not doing a DNS lookup for your domain as your linux server is now going to be the MX host for your domain. There is a lot of good information on the web about how to configure sendmail as a relay host.
On your exchange5.5 IMC you specify that it should relay all email back out through your new linux server.
The main reason that you want to route the mail back out through the linux server is that you want to have the least amount of services visible to the outside world as possible. I'm guessing that you have a firewall, and right now your exchange5.5 IMC is sitting in the DMZ with access to port25 open. You would want to make sure that you put exchange totally behind the firewall and only allow the linux server to be in the DMZ with port25 access.
This should get you started- http://www.akadia.com/services/sendmail_relay.html
February 20th, 2004, 07:26 PM
awesome, that is what extactly what I am looking for. Thanks
February 20th, 2004, 07:46 PM
Since we are taking about this type of info, I have a question. I'm realy a newbie with Exchange by the way.
I'm also using Exchange 5.5. I know Exchange 5.5 have a filter to filter incoming email but I was to filter OUTCOMING email. That my server never send a email outside except if it's from *@MyCompagny.com
February 20th, 2004, 07:56 PM
The content restrictions in exchange5.5 are very limited... You can only allow/deny all by IP, or you can accept/reject messages on an IMC based on entries you specify from the GAL.
So if you had two different user bases on your exchange server, say half of them have the email addie of email@example.com, and the rest are firstname.lastname@example.org. You could go into the content restrictions tab and add everyone from the GAL who has email@example.com to the restricted list. I'm guessing that you have users on your system that you want to be able to send mail internally, but not externally.. That would be the only way to do it.