Allowing Application Server, Copier, or Standard Server to Relay off Exchange 2007

So you want to send anonymous emails using that backup software, do scan to email on your copier, or have that miscellaneous application send emails without authentication on your file server… Its quite easy and secure if setup properly. Many small businesses enable anonymous access on the default SMTP receive connector… DO NOT DO THIS! Its extremely dangerous and you open yourself up to a lot of spam.

To enable the anonymous emails from specific devices, they must be assigned a static IP. Write down all the IPs of the devices, servers, etc… that you want to enable this functionality.

Creating a specific SMTP Receive Connector

  1. Open Exchange Management Console on Hub Transport Server
  2. Tree: Server Configuration -> Hub Transport | Select New Receive Connector (on Right Pane)
  3. Name the Connector (CRM Application, Copy Machines, Internal Anon Email Relay, etc…)
    [singlepic id=717 w=150 h=150 float=center]
  4. Leave Local Network Settings at default (all)
  5. For Remote Network Settings, you will put in your static IP ranges or singles here.
    [singlepic id=718 w=150 h=150 float=center]
  6. Finish making connector: Next -> Finish

Now, Edit the new connector to make it a relay

  1. Right click Connector, Select Properties
  2. Go to Permission Groups Tab, Select Exchange Servers
    [singlepic id=719 w=150 h=150 float=center]
  3. Go to Authentication Tab, Select TLS and External Secured
    [singlepic id=720 w=150 h=150 float=center]
  4. Hit Apply, OK and your finished!

Please Note: This assigns the connector with the following privileges
MS ExchangeExternally Secured Servers {ms-Exch-SMTP-Accept-Authoritative-Domain}
MS ExchangeExternally Secured Servers {ms-Exch-Bypass-Anti-Spam}
MS ExchangeExternally Secured Servers {ms-Exch-Bypass-Message-Size-Limit}
MS ExchangeExternally Secured Servers {ms-Exch-SMTP-Accept-Exch50}
MS ExchangeExternally Secured Servers {ms-Exch-Accept-Headers-Routing}
MS ExchangeExternally Secured Servers {ms-Exch-SMTP-Submit}
MS ExchangeExternally Secured Servers {ms-Exch-SMTP-Accept-Any-Recipient}
MS ExchangeExternally Secured Servers {ms-Exch-SMTP-Accept-Authentication-Flag}
MS ExchangeExternally Secured Servers {ms-Exch-SMTP-Accept-Any-Sender}

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: