none
Mail Flow Cleanup

    General discussion

  • We have a lot of receive connectors for SMTP , relay, and other devices. I'm almost positive some of them could be consolidated.  I think one of them might be causing an issue we are having with SMTP journaling not forwarding external messages.  Could someone take a look at the setup and give me some suggestions?  Also, let me know if you see any other issues. I think i have pasted all of the necessary fields required to review the connectors. If more is needed let me know.  Thanks.

    Get-ReceiveConnector | fl name, enabled, TransportRole, ProtocolLoggingLevel, MaxMessageSize, MaxHopCount, AuthMechanism, RequireTLS, permissiongroups, RemoteIPRanges, Bindings, Fqdn
    
    
    Name                 : Client Proxy LCSXCH01
    Enabled              : True
    TransportRole        : HubTransport
    ProtocolLoggingLevel : None
    MaxMessageSize       : 22 MB (23,068,672 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
    RequireTLS           : False
    PermissionGroups     : ExchangeUsers, ExchangeServers
    RemoteIPRanges       : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
    Bindings             : {[::]:465, 0.0.0.0:465}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : Default LCSXCH01
    Enabled              : True
    TransportRole        : HubTransport
    ProtocolLoggingLevel : None
    MaxMessageSize       : 22 MB (23,068,672 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
    RequireTLS           : False
    PermissionGroups     : ExchangeUsers, ExchangeServers, ExchangeLegacyServers
    RemoteIPRanges       : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
    Bindings             : {0.0.0.0:2525, [::]:2525}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : Default Frontend LCSXCH01
    Enabled              : True
    TransportRole        : FrontendTransport
    ProtocolLoggingLevel : Verbose
    MaxMessageSize       : 22 MB (23,068,672 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
    RequireTLS           : False
    PermissionGroups     : AnonymousUsers, ExchangeServers, ExchangeLegacyServers
    RemoteIPRanges       : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
    Bindings             : {[::]:25, 0.0.0.0:25}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : Outbound Proxy Frontend LCSXCH01
    Enabled              : True
    TransportRole        : FrontendTransport
    ProtocolLoggingLevel : Verbose
    MaxMessageSize       : 36 MB (37,748,736 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
    RequireTLS           : False
    PermissionGroups     : ExchangeServers
    RemoteIPRanges       : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
    Bindings             : {[::]:717, 0.0.0.0:717}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : Client Frontend LCSXCH01
    Enabled              : True
    TransportRole        : FrontendTransport
    ProtocolLoggingLevel : None
    MaxMessageSize       : 22 MB (23,068,672 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls, Integrated, BasicAuth, BasicAuthRequireTLS
    RequireTLS           : False
    PermissionGroups     : ExchangeUsers
    RemoteIPRanges       : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
    Bindings             : {[::]:587, 0.0.0.0:587}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : WebApps01
    Enabled              : True
    TransportRole        : FrontendTransport
    ProtocolLoggingLevel : None
    MaxMessageSize       : 35 MB (36,700,160 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls
    RequireTLS           : False
    PermissionGroups     : AnonymousUsers, Custom
    RemoteIPRanges       : {10.0.50.16, 10.0.50.117-10.0.50.134}
    Bindings             : {0.0.0.0:25}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : SMTP Relay Devices
    Enabled              : True
    TransportRole        : FrontendTransport
    ProtocolLoggingLevel : Verbose
    MaxMessageSize       : 35 MB (36,700,160 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
    RequireTLS           : False
    PermissionGroups     : AnonymousUsers, ExchangeUsers, Custom
    RemoteIPRanges       : {10.0.22.90, 10.0.22.36, 10.0.50.29, 10.0.0.107, 10.0.10.8, 10.0.50.22-10.0.50.116, 10.0.50.1-10.0.50.20, 10.0.50.135-10.0.50.254, 10.0.22.3, 10.0.20.1, 10.0.0.71, 10.0.0.68, 10.0.0.49, 
                           10.0.22.7, 192.168.3.10, 10.0.22.6}
    Bindings             : {0.0.0.0:25}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : EDI SMTP Relay
    Enabled              : True
    TransportRole        : FrontendTransport
    ProtocolLoggingLevel : Verbose
    MaxMessageSize       : 35 MB (36,700,160 bytes)
    MaxHopCount          : 60
    AuthMechanism        : Tls, ExternalAuthoritative
    RequireTLS           : False
    PermissionGroups     : AnonymousUsers, ExchangeUsers, ExchangeServers
    RemoteIPRanges       : {10.0.50.15, 10.0.50.23}
    Bindings             : {0.0.0.0:25, 0.0.0.0:587}
    Fqdn                 : LCSXCH01.luvncare.local
    
    Name                 : Legacy SMTP Relay Devices
    Enabled              : True
    TransportRole        : HubTransport
    ProtocolLoggingLevel : None
    MaxMessageSize       : 35 MB (36,700,160 bytes)
    MaxHopCount          : 60
    AuthMechanism        : BasicAuth
    RequireTLS           : False
    PermissionGroups     : ExchangeUsers
    RemoteIPRanges       : {10.0.50.29, 10.0.0.172, 10.0.50.23}
    Bindings             : {0.0.0.0:2552}
    Fqdn                 : LCSXCH01.luvncare.local
    

    Monday, April 9, 2018 5:04 PM

All replies

  • Rather than checking the receive connectors, have you checked to see which are being used in your Message Tracking Logs?  Run the following to get the information about which are active from the previous week:

    $Today = Get-Date (Get-Date -Format M/dd/yyyy)
    $LastWeek = $Today.AddDays(-7)
    Get-TransportServer | Sort Name | % { Get-MessageTrackingLog -Server $_.Name -EventID Receive -Start $LastWeek -End $Today -ResultSize Unlimited } | ? { $_.ConnectorID } | Select TimeStamp, Client*, ConnectorID | Export-Csv

    You can use this to determine if a) the expected servers are sending any emails, and b) if there are servers sending that you don't expect to see traffic from.  From this, you can start trying to figure out whether your above-mentioned connectors need to be modified.


    Will Martin ...
    -join ('77696c6c406d617274696e2d66616d696c6965732e6f7267' -split '(?<=\G.{2})' | ? { $_ } | % { [char][int]"0x$_" })

    Thursday, April 12, 2018 7:40 PM