Tired Of Spam?... Got Exchange?
Most network administrators are apt to here this complaint at least once a week. "I've been getting a lot of junk email lately, isn't there anything you can do to stop it?".
Well before you might have thought you were lost in the water without spending thousands on some 3rd party software like Symantec Mail Security or some like product. Which most likely doesn't fit in your budget this quarter. So I'm here to introduce to you a way to nearly eliminate all spam from your organization. As long as you are running Exchange that is.
First so that you have a better understanding how this works I'm going to tell you a little about spammers and how they evade detection. There are actually a couple of methods. Either they are running their own server and just sending spam from it, this is highly unlikely. Or they could be relaying off of some poor system administrator who doesn't know how to disable his SMTP server from being an open relay, most common. Lastly they could just be using a server on the net that actively allows people to send emails via SMTP anonymously and freely.
Well systems engineers out there have gotten smart and created what today is called Spam blacklists. A list can be found of all the spam blacklists on google directory.Basically if your server has been caught sending spam you will get added to this list. You may not even know it! However, you will soon start to tell when people come up to you "Hey I just tried to send email to John Doe and it wouldn't go through." Most likely you are on one of these blacklists. You can search for your email server's ip address from a spam database lookup like the one found on DNS Stuff.
But now to the fun stuff. Exchange allows you to filter who can connect to your server via SMTP. It's called connection filtering. And it's very easy to configure. This can literally cut down on about 98% of your spam.
First thing you need to do is go to the Message Delivery properties in Exchange system manager. Once there go to the connection filtering tab.
The second step in this process is to actually add the servernames of the blacklist providing servers. Once again these can be found in the google directory. I personally only use the top three servers on the list because if you add them all it can be very processor intensive on your server and some of the smaller providers results may not be as accurate. Once you click the add button you will be able to add the servers. This window is very self explanatory. You basically just add the name of the server found on the google blacklist directory. From here you can also type custom messages as to what you want to return to the sending SMTP server for denying the connection. The variables for the custom messages are as follows.
%0 - connecting IP address %1 - rule name of the Connection Filter %2 - the RBL provider
Once you setup your custom error codes which are optional you can choose which types of blacklisted servers you want to block. You can do this by clicking on the return status code radio button. If you want to deny all servers listed on the blacklist then you can leave the default radio button selected. Or you can choose which custom blacklisted servers you want to block. Here are the options that you have to choose from.
127.0.0.1 - Blocklist 127.0.0.2 - Known Open Relay 127.0.0.4 - DialUp IP Address
Congratulations you have now successfully configured rules to block message deliver. There is just one last step in the process you must apply these rules to your virutal SMTP server(s) interfaces. So lastly go to the properties of your Default SMTP Virtual Server. Under the general tab click on the advanced radio button. Once here click on the edit radio button. Here check Apply intelligent mail filter and Apply connection filter. Now restart your SMTP service and you are denying connections to viagra, enhancements, and stocks right and left.
To just top off blocking spam out of your network there is one more step you can take. Download service pack 2 for Microsoft Exchange. This service pack contains the intelligent mail filter. This will allow you to block out messages based on their SCL rating(likeliness to be spam). The higher the SCL rating the better chance the message is spam. The settings for this feature can be found once again on the properties of the message delivery. Once in there click on the intelligent mail filter tab.
Personally I like to set my message's to be rejected if the SCL is higher than 7. If it is between 5 and 7 I just tell Exchange to send it to the junk email folder of the clients. This way if the message turns out to be a false positive the user still gets the message it is just inconveniently placed in their spam folder. You can play around with these settings and adjust them according to what works best for you and your organization.
I would like to end this article by saying congratulations spam is no longer your #1 enemy. Now you can get back to worrying about other problems in your network.
Jeremy Whittaker is a Senior Consultant for N2 Network Solutions, a leading Phoenix Arizona IT Consulting firm Visit N2 Online at http://www.n2networksolutions.com
Related Articles:
PageMailr.Com Offers New Solution to Help Prevent Spam
PageMailr.com (www.PageMailr.com) removes the need for spam filters with its new services.
Your Dolphin E-mail Caught In Spam Tuna Net?
Let me ask a couple of questions:If (potential) customers sends an e-mail to your company, do they want to receive an answer?If you, in return, e-mail your customer, do you expect that your e-mail is delivered to the customer?Well, in my case, I answered "YES" on both questions. After all, the customer asks for an answer, so it's normal to expect that when you send an e-mail in return, that the customer receives it.
Telepak Networks Selects PineApp Mail-SeCure Anti Spam Appliance From RADirect to Filter Spam for Thousands of Users
Spam is now virtually eliminated for about half the price of competing solutions.
8 Easy Ways To Stop Spam.
Create and use a temporary email address.
Spam Arrest LLC Wins Lawsuit Against Hormel Over SPAM Trademark
After a five year litigation, Spam Arrest wins the David and Goliath battle to keep its trademark and protect the anti-spam industry from further lawsuits
How To Determine The Origin Of Spam?
Spam will continue spreading as far as it makes profit. If nobody buys from spammers or acts upon their scams, spam will end. This is the obvious and easiest way to fight spam. You can ignore and delete spam emails you receive. But you can also take vengeance on the spammer by complaining to the spammer's Internet Service Provider (ISP). The ISP will block their connection and maybe impose a fine (depending on the ISP's acceptable usage policy). Spammers beware of such complaints and try to disguise their messages. That's why finding the right ISP is not always easy.
Avoid Spam And Find MySpace Layouts
Using various MySpace layouts will sound very exciting, but at the same time users will have to check if the sites they access are free. This will include even links that are hidden in others profiles. While many users go to sites and start looking for layouts, they forget that there could be a lot of spam out there. Most of the designers who are part of MySpace layouts do indulge in free advertising.
We All Hate Spam
All about Spam
SPAM: History and Prevalence
The term Spam is thought to be derived from a Monte Python skit. But the fact that Spam makes up over 80 percent of emails sent isn't that funny!
Are Opt-in Email Lists Still Valuable in this SPAM Age?
One of the things that the introduction of blogs has done is to cause an exodus of sorts from email newsletters or ezines to online publishers simply publishing the information on their blogs.It is not too difficult to realize why online publishers embraced blogs so quickly and enthusiastically.