Exchange Connector Won't Send to External Domains

exchange smtp

Solution 1:

You should set up a receive connector operating on a non-standard port (maybe 2525) and restrict it to only accept IP addresses of servers that you know are allowed to send out. Create the connector with nothing ticked in Authentication and Anonymous users ticked for permissions groups.

After that you'll need to run the following command in PS as Exchange by default blocks anonymous relaying on any receive connector.

Get-ReceiveConnector “Receive Connector Name” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”

I just tested this on my own exchange server and managed to send to both gmail and my own domain, sending from the exchange domain as well as a fake domain.

Also add the -port 2525 argument onto your PS script.

Related

Load balancer explanation
Unattended upgrades doesn't upgrade (or does nothing at all)
Routing setup for OpenVPN server on Amazon EC2
Dual Primary OCFS2 DRBD encountered split-brain. Is recovery always going to be manual in this case?
FreeBSD IP aliases in different subnets and default outgoing IP address
How to detect and prevent postfix from dishing out spam email from compromised mail account
Verifying MTA for correct behavior with swaks
How do I pass a multiline variable as a parameter to a function
Enabling Chunked Transfer encoding in Nginx v.1.3.9+
Promote Active Directory Replica DC With No Access to FSMOs
Is there a backend-aware load balancer for Rails/Passenger?
What happens when a browser does not support SNI