tag:blogger.com,1999:blog-6340399039004938690.post1960809743520251477..comments2023-09-24T13:16:34.214+02:00Comments on a new message has arrived: RBL and Exchange 2013Lasse Petterssonhttp://www.blogger.com/profile/04621803248555781125noreply@blogger.comBlogger11125tag:blogger.com,1999:blog-6340399039004938690.post-6645023851457520232013-09-20T23:58:33.123+02:002013-09-20T23:58:33.123+02:00Yes, the block list provider is enabled. I think ...Yes, the block list provider is enabled. I think the issue might have to do with what my outside IP address is for my mail server. I found tried the test email mentioned above and it didn't work because they were trying to connect back to a wrong address. Thank you for the reply. Jason Prahlhttp://www.jasonprahl.comnoreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-71277263472276358482013-09-20T21:53:59.058+02:002013-09-20T21:53:59.058+02:00Is the Blocklistprovider enabled?
Verify with &quo...Is the Blocklistprovider enabled?<br />Verify with "Get-IPBlockListProvider | fl" Lasse Petterssonhttps://www.blogger.com/profile/04621803248555781125noreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-77294227398130340112013-09-20T18:41:34.468+02:002013-09-20T18:41:34.468+02:00Hi, these instructions worked great. I was loggin...Hi, these instructions worked great. I was logging a lot of blocked spam and all looked well. Somewhere along the line it just stopped and I can't figure out why. I've removed the block list and the transport agent and re-installed it. Restarted the services and even rebooted but now I get no activity in the log. I can't see any errors in the event viewer to point me anywhere. Not sure what happened. Can you point me to something to troubleshoot? Thank you kindly for you post and any help you might be able to provide. Jason Prahlhttp://www.jasonprahl.comnoreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-85625974954041095422013-09-20T11:29:49.667+02:002013-09-20T11:29:49.667+02:00Good morning,
We're trying to follow your ins...Good morning,<br /><br />We're trying to follow your instructions and nelson-sbl-test@crynwr.com always answered that test failed.<br /><br />Could you please help ?<br /><br />Many many thanks,<br /><br />jb_2000<br /><br />**********************************<br /><br />Environment : Exchange 2013 CAS & Mailbox<br /><br /><br />[PS] C:\Windows\system32\Get-TransportAgent -TransportService FrontEnd<br />Identiy Enabled Priority<br />------- ------- --------<br />Connection Filtering Agent True 1<br /><br />[PS] C:\Windows\system32\Get-IPBlockListProvider<br />Name LookupDomain Priority<br />------ ------- -------<br />zen.spamhaus.org zen.spamhaus.org 1<br /><br />Furthermore there's no new AgentLog folder created under C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\FrontEnd\ jb_2000noreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-72164906465821556772013-09-19T11:57:20.372+02:002013-09-19T11:57:20.372+02:00Good morning,
We're trying to follow your ins...Good morning,<br /><br />We're trying to follow your instructions (your nickname is also Barxane ?) and nelson-sbl-test@crynwr.com always answered that the test failed.<br /><br />Could you please help ?<br /><br />Many many thanks,<br /><br />jb_2000<br /><br />**********************************<br /><br />Environment : Exchange 2013 CAS & Mailbox<br /><br />*****************************<br /><br />[PS] C:\Windows\system32\Get-TransportAgent -TransportService FrontEnd<br />Identiy Enabled Priority<br />------- ------- --------<br />Connection Filtering Agent True 1<br /><br />[PS] C:\Windows\system32\Get-IPBlockListProvider<br />Name LookupDomain Priority<br />------ ------- -------<br />zen.spamhaus.org zen.spamhaus.org 1jb_2000noreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-48058772786684347902013-07-15T21:56:18.025+02:002013-07-15T21:56:18.025+02:00To get this working on a CAS server without coloca...To get this working on a CAS server without colocated mailbox role, you need to use local powershell instead of remote powershell.<br />Start a regular powershell on your CAS and add Exchange snapin. Then install and configure the agent as described.<br /><br />To stop doing RBL checks for some IP, add those IP in the InternalSMTPServers list with the Set-TransportConfig cmdlet.<br /><br />Another thing you can do is to add recipient addresses that should be excluded from the RBL check with set-IPBlockListProvidersConfig -BypassedRecipients xxx<br />Lasse Petterssonhttps://www.blogger.com/profile/04621803248555781125noreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-87532772596938474822013-07-04T03:00:39.707+02:002013-07-04T03:00:39.707+02:00Has any one tested this on the CAS role without th...Has any one tested this on the CAS role without the Mailbox and CAS on one server?<br /><br />Doesn't work for me on the CAS role. No logs or anything to see why.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-5716118928083664312013-06-28T09:28:06.395+02:002013-06-28T09:28:06.395+02:00Dear Anon,
You can see the agent with this comman...Dear Anon,<br /><br />You can see the agent with this command:<br />Get-TransportAgent -TransportService FrontEnd<br /><br />To add excepted domains run the following commands:<br /><br />$list = (Get-ContentFilterConfig).BypassedSenderDomains<br />$list.add("domain.com")<br />set-contentfilterconfig -BypassedSenderDomains:$list<br /><br />You can see the current list with:<br />(Get-ContentFilterConfig).BypassedSenderDomains<br /><br />Use BypassedSender to add senders email addresses.<br /><br />Michelhttp://www.ncg.nlnoreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-36170052590145648702013-06-26T15:33:31.862+02:002013-06-26T15:33:31.862+02:00hello lasse, thx for the post. it got a bit more c...hello lasse, thx for the post. it got a bit more clear for me but still confusing. i have installed and working anti-spam agent for rbl. however i like to make some exceptions to this for some mail sender hosts (domain or sender). due to i do not see the connection agent in the list of my 9 agents (starting with the contend filter) do you know how i could make an exception to an rbl not to check for this ip/domain/sender?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-18356783146834942162013-06-25T13:21:40.124+02:002013-06-25T13:21:40.124+02:00Binding the connection agent to the FrontEnd trans...Binding the connection agent to the FrontEnd transport does work! The FrontEnd transport is where connections to port 25 are made to, so this transport agent should handle the connection filtering, not the Hub transport where the connection is relayed to.<br /><br />The reason that subsequent connections are also rejected is because the connection between the frontend and transport agents stays open for subsequent message deliveries so the connection agent keeps responding to the first rejected message until the connection between the frontend and transport is dropped after timeout.<br />Michelhttp://www.ncg.nlnoreply@blogger.comtag:blogger.com,1999:blog-6340399039004938690.post-1906920441402357762013-06-07T00:35:50.442+02:002013-06-07T00:35:50.442+02:00Thank you Lasse Pettersson. I have been bombarded...Thank you Lasse Pettersson. I have been bombarded with spam since upgrading to Exchange 2013 as Microsoft disabled the connection filter feature of their anti-spam software. So far this has done the trick!<br /><br />Thanks,<br /><br />RayRayhttp://blogspot.comnoreply@blogger.com