Exchange 2010 Block Internet Email, with exceptions

exchange exchange-2010 exchange-2003 exchange-migration
6,638

This shouldn't be too difficult using transport rules.

Am on Exchange 2007 but process is extremely similar...

Restricting outbound internet mail for some users

Create a Distribution Group and add the recipients you want to prevent from sending internet email as members of the group.

Create a Transport Rule

1) Fire up Exchange console | Organization Configuration | Hub Transport | Transport Rules tab | click New Transport Rule

2) Enter a name for the rule – e.g. Rule-NoInternetMail

3) On the Conditions page, select “From a member of a distribution list“

4) In the rule description, click the link for distribution list (underlined)

5) Click Add | Select the distribution list “DG-NoInternetMail”

6) Under Conditions, select a second condition “Sent to users inside or outside the organization“

7) In the rule description, click Inside (underlined) | change scope to Outside

8) Click Next

9) On the Actions page, select “send bounce message to sender with enhanced status code“

10) If you want to modify the text of the bounced message (optional): In the description, click “Delivery not authorized, message refused” | enter new message text

11) Click Next | verify the rule conditions and action in the summary

12) Click New | click Finish

Restricting inbound internet mail for some users

Using the Exchange console:

Expand Recipient Configuration > select recipient > recipient Properties | Mail Flow Settings page | Message Delivery Restrictions | Properties
Select “require that senders are authenticated“

(source: http://exchangepedia.com/2007/07/how-to-prevent-a-user-from-sending-and-receiving-internet-mail.html)

Share:
6,638

Related videos on Youtube

Riaan
Author by

Riaan

My programming languages of choice are C# and Delphi, although I do have experience in Java. In addition, I also have a little bit of C++ knowledge, which formed part of my National Certificate in Datametrics from the University of South Africa (UNISA). As of late, I started dabbling in some web development, mainly ASP.NET MVC, ASP.NET Core, jQuery and Javascript. I graduated in 2019 with my BCom Honours degree with a specialisation in Information Systems from the University of Cape Town (UCT). I also have more than 20 years of experience in most things IT related from building and selling Personal Computers and lending IT support to those in need.

Updated on September 18, 2022

Comments

  • Riaan
    Riaan almost 2 years

    Background:

    We are in the process of our Exchange2003 to Exchange 2010 migration (SBS2003 to Win2008/Exchange2010). All the mailboxes have been transferred to the Exchange 2010 server, but we are still using the SMTP Connector of Exchange 2003 to send external emails.

    The company has a policy that not all users are allowed to send/receive External emails. This 'rule' has been applied to the Exchange 2003 SMTP connector a couple of years by from this article: "Restricting Users from Sending Internet Based Email".

    A quick overview: Basically create an AD security group called "No Internet Email" and assign this group to the Connector's Delivery Restrictions - Reject Message From field. All one now has to do is to add all the users to the "No Internet Email" security group in order to block those users from sending emails.

    The problem: I've been instructed to keep the email restrictions for the "No Internet Emails" group in place, but I must allow the restricted users to be able to send/receive internet emails to/from a select view domains, i.e. certain customers, etc.

    How would I go about doing this? If I need to change the way the users are blocked from sending/receiving emails on Exchange 2010 instead of using the Connector route as described in the above mentioned article, then so be it.

    Any help would be greatly appreciated

  • gusya59
    gusya59 almost 12 years
    Again, using the transport rule, you could use the 'when the From address contains specific words' to filter out entire domains.
  • Riaan
    Riaan almost 12 years
    If I set the delivery restrictions, will that stop delivery from specified "allowed domains" as well, or will it allow delivery from those domains. I've user send email to email address in specified domain, if recipient replies to the email, will the user still received it when inbound email is restricted as mentioned above?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Exchange 2010, Event 3145 MSEXCHANGEREPL error
Outlook 2007/2010 autodiscovering old Exchange info
changing bridgehead server post-install in a mixed exchange 2010/2003 environment
Redirect OWA 2003 to OWA 2010 goes to internal server URL
ADSIEdit Cleanup After Exchange 2003 Crash During Transition To Exchange 2010
Clarifying terminology: MAPI vs RPC/HTTPS vs Outlook Anywhere
No-reply address in Microsoft Exchange?
exchange 2010 installation fails on hub transport role
How do I hide meeting attendees in Outlook 2010?
Adding exchange room calendars to iPad