Prev: Need to clear Transaction logs - Consistency check taking too long
Next: Abnormal shutdown - One mailbox malfunctioning
From: Fabrice on 1 May 2010 02:55

Hello,

I have just migrated from Exchange 2003 to 2007 sp2.
I have also a smarthost in DMZ. Not a edge serveur.

With Exch2003 I used IMF with my own SCL. It works fine and many spam were
stopped.


I have "installed" the antispam rules under Exch2007 and configured it with
the same SCL rules. But now no emails are stopped.
When I look in an email header I can note the following informations :

X-MS-EXCHANGE-ORGANISATION-Antispam-report : IPONALLOWLIST
and
X-MS-EXCHANGE-ORGANISATION-SCL:-1

My smarthost is not in Green list, but just authorized on the reception
connector.

Why all the emails from Internet are indicated with "IPONALLOWLIST" and so
no controlled by antispam rules ?

thanks for your help.
fabrice









Bonjour � tous

Je viens de passer d'Exchange 2003 � Exchange 2007.
J'utilise un smarthost en DMZ.

Sous la version 2003, j'utilisais pleinement IMF avec des SCL personnalis�s.
Cela fontionnait tr�s bien et beaucoup de courriers de spam �taient
supprim�s.

Sous 2007, j'ai activer �galement les r�gles antispam avec les m�mes SCL.
Mais d�sormais plus aucun email ne semble r�ellement trait� par l'antispam
exchange 2007. Je me suis aper�u que le hearder des emails contenait tous
la mention d'IPONALLOWLIST et donc avec un scl de -1
(X-MS-EXCHANGE-ORGANISATION-SCL:-1).

Cela voudrait dire que l'adresse de mon smarthost se trouve dans la liste
verte ce qui n'est pas le cas. Ce dernier est juste autoris� sur le
connecteur de r�ception. normal.

Si vous aviez une id�e.
Merci par avance.

fabrice
From: Rich Matheisen [MVP] on 1 May 2010 14:11
On Sat, 01 May 2010 08:55:59 +0200, Fabrice <fabrice77s(a)yahoo.text.fr>
wrote:

>I have just migrated from Exchange 2003 to 2007 sp2.
>I have also a smarthost in DMZ. Not a edge serveur.
>
>With Exch2003 I used IMF with my own SCL. It works fine and many spam were
>stopped.
>
>
>I have "installed" the antispam rules under Exch2007 and configured it with
>the same SCL rules. But now no emails are stopped.
>When I look in an email header I can note the following informations :
>
>X-MS-EXCHANGE-ORGANISATION-Antispam-report : IPONALLOWLIST
>and
>X-MS-EXCHANGE-ORGANISATION-SCL:-1
>
>My smarthost is not in Green list, but just authorized on the reception
>connector.

What boxes are checked on the "Authentication" tab of the connector?
If you've checked "Externally secured" that allows the inbound e-mail
on that connector to bypass all spam filters.
---
Rich Matheisen
MCSE+I, Exchange MVP
From: Fabrice on 2 May 2010 03:28
Rich Matheisen [MVP] wrote:

> On Sat, 01 May 2010 08:55:59 +0200, Fabrice <fabrice77s(a)yahoo.text.fr>
> wrote:
>
>>I have just migrated from Exchange 2003 to 2007 sp2.
>>I have also a smarthost in DMZ. Not a edge serveur.
>>
>>With Exch2003 I used IMF with my own SCL. It works fine and many spam were
>>stopped.
>>
>>
>>I have "installed" the antispam rules under Exch2007 and configured it
>>with the same SCL rules. But now no emails are stopped.
>>When I look in an email header I can note the following informations :
>>
>>X-MS-EXCHANGE-ORGANISATION-Antispam-report : IPONALLOWLIST
>>and
>>X-MS-EXCHANGE-ORGANISATION-SCL:-1
>>
>>My smarthost is not in Green list, but just authorized on the reception
>>connector.
>
> What boxes are checked on the "Authentication" tab of the connector?
> If you've checked "Externally secured" that allows the inbound e-mail
> on that connector to bypass all spam filters.
> ---
> Rich Matheisen
> MCSE+I, Exchange MVP

Hello

Those are the boxes checked on my sender connector :

- Tls (transport layer security)
- Basic authentication
- Exchange Server authentication
- Integrated authentication


"Externally Secured" is not checked.
Thanks for your help

fabrice

From: Rich Matheisen [MVP] on 2 May 2010 12:14
On Sun, 02 May 2010 09:28:46 +0200, Fabrice <fabrice77s(a)yahoo.text.fr>
wrote:

[ snip ]

>Those are the boxes checked on my sender connector :
>
>- Tls (transport layer security)
>- Basic authentication
>- Exchange Server authentication
>- Integrated authentication
>
>
>"Externally Secured" is not checked.
>Thanks for your help
>
>fabrice

So, if you use the get-ipallowlistentry cmdlet the IP address in
question isn't found?

Get-IPAllowListentry -ipaddress 1.2.3.4

Do you have any IP Allow List Providers?
get-IPAllowListProvider

Is the IP address listed on one of them?
test-IPAllowListProvider
---
Rich Matheisen
MCSE+I, Exchange MVP
 | 
Pages: 1
Prev: Need to clear Transaction logs - Consistency check taking too long
Next: Abnormal shutdown - One mailbox malfunctioning