TechShizz | All posts tagged 'Exchange 2010'

Configure POP and IMAP

To enable IMAP and POP3, the services need to be configured on the exchange server.

Enable IMAP and POP3 Service></p>

<p style=

They need to be started and set to start up automatically. 

 

Once this is done you cant go to the Server Configuration\Client Access node to configure. 

 

You can configure all the settings on these properties dialog boxes for each service

from the EMS by using the Set-POPSettings or Set-IMAPSettings cmdlets

 

You can test that these services are working correctly by using these EMS commands:

 

Test-POPConnectivity

 

Test-IMAPConnectivity


Clone Edge Transport Server

In a production environment we would want to have the same configuration on each edge transport server. Rather than do this manually, we can use a special script to export the configuration of the first Edge transport server. The following is copied over when this is implemented:

  • Send and Receive connectors
  • Accepted Domains
  • Remote Domains
  • IP Allow/Block Lists
  • Anti Spam: Content filter/recipients filter/address rewrite entries and attachment entries.

 

To Clone

 

  1. Install the Edge transport role on the target server.
  2. Run: ./ExportEdgeConfig -cloneconfigdate:"C:\cloneconfigdata.xml"  on the source edge server. These scripts can be found at c:\Program Files\Microsoft\Exchange Server\V14\Scripts"
  3. Move the created XML file to the target edge server
  4. On the target server, create the reference XML by running  ./ImportEdgeConfig -cloneconfigdata:"c:\cloneconfigdata.xml" -isimport $false -cloneconfiganswer:"C:\cloneconfiganswer.xml"
  5. You will need to edit the XML to contain:
    1. Data and log file paths
    2. Source IP addresses for send connectors
    3. Network bindings for each connector.
  6. After editing the XML, run ./ImportEdgeConfig -cloneconfigdata:"c:\cloneconfigdata.xml" -isimport $true -cloneconfiganswer:"C:\cloneconfiganswer.xml" on the target server.

Create an Edge Subscription

  1. Ensure DNS resolution between the Hub > Edge and Edge >Hub.
  2. On the Edge server run: New-EdgeSubscription -FileName "C:\Edge.xml"
  3. Transfer the file created to the Hub Transport server
  4. On the Hub t, Go to Organization Config > Hub Transport > Edge Subscriptions(tab) > New Edge Subscription.
  5. Specify the location of the file transferred in step 3.
  6. Click new to create the subscription and click finish. 

Receive Connectors in Exchange 2010

A receive connecter acts as a logical gateway used to listen for inbound connections of certain specifications to receive mail.

 

You could set up a receive connector for just one Protocol, or from a range of IP addresses and therefore we can have multiple receive connectors that receive mail of different origins.

Hub Transport Node

  • Client connector is used to receive from non MAPI clients
  • Default is used for connections from other Hub Transport servers.

 

In the properties of these receive connectors we can specify the following:

 

The FQDN that the connector will listen on

Turn on/off Protocol logging (for troubleshooting)

Maximum message receive size

Protocol Logging Level

 

Specify IP addresses the connector listens on IPv4/v6

Specify IP addresses the connector listens on IPv4/v6

The authentication method when a connection is made. If this is not secured/configured properly, it may be possible for email to  be relayed from our server without permission. (Open Relay).

Authentication Tab

Permission Groups - Which groups of users or computers can connect to this connector.

 

Client Connector Permissions

Permission Groups

 

Default Connector Permissions

 

Permission Groups

Managing Transport Rules

To get a full list of all transport rules predicates - Run this rule on the server with the Hub-Transport role.

 

Get-TransportRulePredicate | FT

 

These predicated can be a condition or an exception when used to identify matching criteria. 

 

 

Transport Rule Actions are applied when the messages match the conditions but no exceptions.

 

For a full list of actions type

 

Get-TransportRuleAction | FL

 

The output may be different depending on if this is run on the Hub Transport or the Edge Transport Server.

 

The following command creates the transport rule TransportRuleExample, which adds Kim Akers to the

recipients of any email messages sent to Mark Harrington except for messages that are sent by the external user DonalMace@Contoso.com:

 

New-TransportRule –Name TransportRuleExample –SentTo "Mark Harrington" –AddToRecipients

"Kim Akers" –ExceptIfFrom DonalMace@Contoso.com

 

 

Active Directory stores transport rules that are configured on Hub Transport servers so

that these transport rules are accessible to all Hub Transport servers in the organization

through Active Directory replication.

 

Transport rules that are configured on Edge Transport servers are stored in Active Directory Lightweight Directory Services (AD LDS) - Rules configured on one Edge Transport server do not automatically replicate to other Edge Transport servers in an Exchange organization.

Edge server transport rules apply to all types of message, cannot expand distribution group membership, cannot access Active Directory attributes, and cannot inspect or modify IRM-protected message content.


Coding a Transport Rule That Uses an Expression

Because regular expressions can appear to be complex and lead to lengthy EMS commands

being written to interpret such expressions, administrators often write code in the EMS to

implement such rules. This code is not complex programming but consists mainly of defining

variables that simplify the final statement of the rule.

A typical example detects that a number pattern is in the format of a U.S. Social Security

number.  The following code, entered into the EMS, creates a

transport

rule that prohibits the transmission of a U.S. Social Security number:

 

$Condition = Get-TransportRulePredicate SubjectMatches

$Condition.Patterns = @("\d\d\d-\d\d-\d\d\d\d")

$Action = Get-TransportRuleAction RejectMessage

$Action.RejectReason = "You are not permitted to transmit Social Security Numbers."

New-TransportRule -Name "Block Social Security Numbers" -Condition $Condition -Action

$Action

 

 

To modify a transport rule

 

Set-TransportRule