How to make the connection control apply to anonymous connections in an SMTP virtual server (920600)

MORE INFORMATION

Typically, mail administrators want Microsoft Exchange Server to receive anonymous mail submissions from hosts such as other mail gateways or application servers that must deliver mail. However, these hosts cannot be configured to use authenticated Simple Mail Transfer Protocol (SMTP). Instead, the mail administrators create a dedicated, anonymous virtual server that has the connection control configured to enable connection only from those specified hosts.

When you troubleshoot mail issues, multiplying virtual servers on Exchange Server can be difficult. Therefore, Microsoft IT has published a white paper that describes how to make the connection control settings relevant only for anonymous connections. This configuration enables you to use an existing virtual server to let anonymous connections from some IP addresses. Additionally, you can maintain access from all authenticated client computers.

You can use an existing SMTP virtual server to do the following tasks:

• Check the anonymous authentication in addition to the current authentication settings
• Configure connection control only let the hosts that submit mail anonymously to connect
• Set the value of the SmtpIpRestrictionFlag property to 1 on the SMTP virtual server
  
  Then, you can use this virtual server for ordinary mail flow and anonymous mail submissions in addition to maintaining good security.
  
  Note For the first SMTP virtual server, type the following command at the command prompt:

  cscript adsutil.vbs SMTPSVC/1/SmtpIpRestrictionFlag 1