What should you do?

You are the Exchange administrator for your company. The network consists of a single Active Directory domain.
A server named Exch1 runs Exchange Server 2003 and hosts all user mailboxes. Exch1 also sends and receives SMTP email messages to and from the Internet.
Exch1 is protected by a firewall that connects the intranet to the Internet. Users report that they receive a large number of unsolicited email messages every day.
You discover that all users receive the same unsolicited email messages, which are sent to a universal distribution group in the domain.
You need to ensure thatdistribution groups cannot be used to send email messages from the Internet to company users.
Your solution must not affect the ability of company users to send and receive legitimate email messages.
What should you do?

You are the Exchange administrator for your company. The network consists of a single Active Directory domain.
A server named Exch1 runs Exchange Server 2003 and hosts all user mailboxes. Exch1 also sends and receives SMTP email messages to and from the Internet.
Exch1 is protected by a firewall that connects the intranet to the Internet. Users report that they receive a large number of unsolicited email messages every day.
You discover that all users receive the same unsolicited email messages, which are sent to a universal distribution group in the domain.
You need to ensure thatdistribution groups cannot be used to send email messages from the Internet to company users.
Your solution must not affect the ability of company users to send and receive legitimate email messages.
What should you do?

A.
Convert the universal distribution groups to universal security groups.

B.
Configure the distribution groups so that messages are only accepted from authenticated users.

C.
Configure Exch1 to reject incoming SMTP traffic from external IP addresses.

D.
Configure Exch1 to send and receive SMTP traffic to and from the firewall. Configure the firewall to reverse publish the SMTP port on Exch1.

Explanation:

The universal group is used for mail distribution in your organization. To stop receiving spam, you can configure the distribution group
to accept mail for authenticate users only.
Incorrect answers
A. Converting universal group to security group on its own will not protect your against unsolicited mail.
C. If you configure Exch1 to reject incoming SMTP traffic from external IP addresses, you will not receive mail from anybody.
D. Although not recommended, you can position the Exchange Server 2003 front-end server acting as the RPC proxy
server inside the perimeter network. In this scenario, you configure your Exchange servers as in Scenario 1. However,
you will need to make sure to open the ports required by RPC over HTTP on your internal firewall, in addition to those
already required for an Exchange front-end server. The ports for RPC over HTTP are TCP 6001, 6002, and 6004.
Access Guide MS white paper Exchange 2003 Front-End Back-End Topology MS white paper Exchange Server 2003 Message
Security Guide MS white paper Microsoft Exchange Intelligent Message Filter Deployment Guide



Leave a Reply 0

Your email address will not be published. Required fields are marked *