Controlling spam in Exchange 2007 at the edge transport server level

Since spam reportedly accounts for 90% of all inbound email, it's best to keep it out of users' mailboxes. What's the best way to do that? Ultimately, the best approach is to use hosted filtering.

Hosted filtering points your MX DNS record to a third-party filtering provider that removes spam and sends remaining messages to the Exchange organization. This ensures that Internet bandwidth isn't wasted on spam and that viruses never reach your organization.

While this approach works well, many organizations prefer to deal with spam and viruses locally. In these situations, the best approach is to eliminate spam and viruses at the edge transport server level. Microsoft states that the edge transport server's primary function is spam control. Even so, there are other reasons to eliminate spam and viruses at the edge transport server level.

Exchange Server 2007 uses a centralized hub transport. Every message passes through the hub transport pipeline, regardless of whether the message was sent from the Internet or from an internal user. If you attempt to eliminate spam at the hub transport server level -- or even at the mailbox server or mail client level -- spam will reach the transport pipeline before it's eliminated.

More on spam and virus protection: How file-level antivirus software can harm your Exchange Server Microsoft Exchange Server security dos and don'ts

If 90% of all messages are spam and you allow it to reach the transport pipeline, then your hub transport server must process about 10 times more mail than usual. This can back up message queues and affect server performance.

Many small- and medium-sized organizations choose to piggyback the Hub Transport Server role onto their mailbox servers. In these cases, the server's resources may be stretched thin before even throwing spam into the mix.

Additionally, some organizations may be required by law to archive all email messages. Because most message archiving products copy messages as they flow through the hub transport, allowing spam to reach the hub transport pipeline increases archive storage costs. It may also make it more difficult to locate specific messages within the archives, which are congested with spam.

Spam is a nuisance, but viruses are harmful. I recommend scanning for viruses at the edge transport server level. You should also have Exchange-aware antivirus software installed on all mail servers. Finally, be sure that you have antivirus software installed on client machines as well as the appropriate Outlook plug-in.

About the author: Brien M. Posey, MCSE, is a five-time recipient of Microsoft's Most Valuable Professional (MVP) award for his work with Exchange Server, Windows Server, Internet Information Services (IIS), and File Systems and Storage. Brien has served as CIO for a nationwide chain of hospitals and was once responsible for the Department of Information Management at Fort Knox. As a freelance technical writer, Brien has written for Microsoft, TechTarget, CNET, ZDNet, MSD2D, Relevant Technologies and other technology companies. You can visit Brien's personal website at www.brienposey.com.

Do you have comments on this tip? Let us know.

Please let others know how useful this tip was via the rating scale below. Do you know a helpful Exchange Server, Microsoft Outlook or SharePoint tip, timesaver or workaround? Email the editors to talk about writing for SearchExchange.com.

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Exchange Security Tips How to install Forefront Security for Exchange Server Is full email encryption the solution to Exchange security? Lock down direct file access and protect OWA users When to use a self-signed certificate with Exchange Server 2007 Obtaining and verifying SSL certificates in Exchange Server How file-level antivirus software can harm your Exchange Server Understanding Exchange Server 2007 SP1 mobile security settings Which ActiveSync authentication method is best for your mobile device? Why you should secure Exchange 2007 using administrative policies Microsoft Exchange Server security dos and don'ts Spam and virus protection How to install Forefront Security for Exchange Server Block Web beacons and protect OWA users from spam How file-level antivirus software can harm your Exchange Server Problems with email spoofing on SBS 2003 Exchange Insider e-zine Securing your Exchange Server 2007 journaling archives Troubleshooting Outlook Web Access issues on a 64-bit system Microsoft Exchange Server security dos and don'ts Troubleshooting Microsoft Exchange Server Event ID error 6009 How effective is tracking the IP address of an email hacker? Spam and virus protection Research Microsoft Exchange Server 2007 How to install Forefront Security for Exchange Server Displaying Exchange 2007 public folders in SharePoint Don'ts for optimal Exchange 2007 mailbox server efficiency Is your Exchange 2007 hub transport server healthy? Top 5 Exchange ActiveSync tips Two useful tools for documenting an Exchange Server installation Restore Exchange storage groups with DPM 2007 How a hosted Exchange service can help you Email issues after configuring hosted Exchange server on laptop Migrating to Exchange 2007 with correct permissions Microsoft Exchange Server 2007 Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary backscatter spam  (SearchExchange.com) greylist  (SearchExchange.com) image spam  (SearchExchange.com) KnujOn  (SearchExchange.com) Sender ID  (SearchExchange.com) spam confidence level  (SearchExchange.com) spamblock  (SearchExchange.com) spim  (SearchExchange.com) tarpitting  (SearchExchange.com) Vouch by Reference (VBR)  (SearchExchange.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary