Occasional Massive Buildup of Messages in Pending Queue

70 pts.
Tags:
Microsoft Exchange 2000
Microsoft Exchange 2007
SMTP
We have an Exchange 2000 installation acting as an edge/relay/gateway server in our DMZ. This machine runs our anti-virus/anti-malware scans (we use McAfee for our email gateway protection) before the email is passed through to our interior Exchange 2007 server. (And yes, we are testing an Exchange 2007 Edge Server deployment before implementing it.) Occasionally we will get literally thousands of incoming messages, most of which are spam, of course, that accumulate in the pending SMTP queue and thus legitimate email delivery gets delayed. 1. Outside of a spam storm (and given how spammers operate II would think we would see it more often than once every month or two like we see it now), what could be happening here to cause this massive build-up? 2. We normally comb through the queue trying to pick-out the legitimate email and deleting the spam in the queue; however, particularly when the machine is very busy during the business day, it can take forever just to delete say, 100 (of the spam) messages (not to mention the strain on the eyes, the occasional deletion of a valid message, and time it takes to do this). Is there a utility or does anyone have a better method of addressing this?

Answer Wiki

Thanks. We'll let you know when a new response is added.

We had the same issue for our organization. We went with <a href=”http://www.postini.com/”>Postini</a> services. Our mail servers are now configured to accept mail from ONLY Postini. This has effectively dropped our inbound mail to 10% of what it was before putting spam filtering in the cloud. In other words, all e-mail to my organization is 90% spam and 10% legitimate.

Be sure your edge mail servers are not configured as relay hosts for any domain but your private domain and that the relay point is from the inside out and no one can spoof your domain on the outside and relay messages.

One feature that Postini has that is useful is blocking <a href=”http://www.postini.com/services/dha_wp.pdf”>directory harvest attacks</a>. This has also significantly reduced inbound messages to legitimate addresses only.

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Richlich
    Many thanks for the suggestions! That host is only set to relay to the interior email server so that's not a problem. Unfortunately, right now a Postini-type service or even a Barracuda or some such isn't in the cards. (I wish it were.)
    70 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following