Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Re: Multiple MX records for Exchange 2003

0 views
Skip to first unread message

Rich Matheisen [MVP]

unread,
Mar 3, 2009, 9:18:46 PM3/3/09
to
On Tue, 3 Mar 2009 00:10:01 -0800, Laljeev <lalj...@newsgroup.nospam>
wrote:

[ snip ]

>We have 3 ISA servers connected to 3 ISPs, if one link goes down all mail
>transactions happen through 2nd or 3rd link which (IPs) is assigned to 2nd
>and 3rd MX records. Also we configured spf records. My concern is, always
>SMTP uses mail.publicdomain.com name for sending and receiving mails even if
>it's using digfferent IPs (IPs of mail1 or mail2) and whether it will create
>any issues for sending and receiving mails with external domain since SPF
>record will check reverse Ips.

Just make sure your domain's SPF record lists all three IP addresses.
---
Rich Matheisen
MCSE+I, Exchange MVP

Rich Matheisen [MVP]

unread,
Mar 4, 2009, 7:36:44 AM3/4/09
to
On Tue, 3 Mar 2009 21:59:00 -0800, Laljeev <lalj...@newsgroup.nospam>
wrote:

>We have mentioned all 3 MX records in SPF and also reverse DNS records are
>configured. From your suggestion I think this is more than enough.
>
>One more help needed. Is it better to use any 3rd party SMTP servers like
>Symantec Mail security as SMTP gateway other than the FE server for receiving
>& sending mails. Currently we are using FE server with McAfee Groupshield.

I suppose that's a question that needs qualification. My opinion is
that Exchange shouldn't touch the Internet. But your situation, and
budget, may dicate otherwise.

If you want, or must, keep all your mail processing in-house, then
look at email security appliances to act as your SMTP gateway. If you
can outsource the vetting then there are several good quality vendors
available to handle that. You'd just set your Exchange FE server to
accept connections only from their IP addresses.

Rich Matheisen [MVP]

unread,
Mar 4, 2009, 11:58:32 AM3/4/09
to
On Wed, 4 Mar 2009 05:56:02 -0800, Laljeev <lalj...@newsgroup.nospam>
wrote:

>We can't go for an outsource, but we are planning to install an SMTP gateway
>server. We don't have any previous experiance with 3rd party SMTP gateway
>applications, can you reccommond a few, then we can reccomond that to our IT
>head. What I meant is ito nstall a 3rd party SMTP gateway server, forward all
>external mails to that server from FE server and also it will receive all
>external mails.

Here are three:
SecureComputing SecureMail
Barracuda
SpamAssassin (open-source)

0 new messages