Anlegen von Anonymous Relay Connectoren auf Exchange 2016 Servern

Anlegen von neuen Connectoren auf Exchange 2016 Servern

Anlegen eines neuen Connectors:

New-Receiveconnector -Server cs-msx3 -Name “Anonymous Relay cs-msx3” -TransportRole “FrontendTransport” -Bindings (“0.0.0.0:25”) -Usage “Custom” -PermissionGroups AnonymousUsers -AuthMechanism Tls -RemoteIPRanges (“10.100.xxx.xxx”)

Kontrolle des neuen Connectors:

Get-ReceiveConnector “cs-msx3\Anonymous Relay cs-msx3” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”

Übernehme der IP Listen von den Exchange 2010 Anonymous Relay Connectors auf die Exchange 2016 Anonymous Relay Connectors:

Set-ReceiveConnector “cs-msx3\Anonymous Relay cs-msx3” -RemoteIPRanges ( Get-ReceiveConnector “cs-msx-1\NoAuthRelay” ).RemoteIPRanges

Anlegen von Anonymous Relay Connectoren auf den Exchange 2016 Servern:
New-Receiveconnector -Server cs-msx3 -Name “Anonymous Relay cs-msx3” -TransportRole “FrontendTransport” -Bindings (“0.0.0.0:25”) -Usage “Custom” -PermissionGroups AnonymousUsers -AuthMechanism Tls -RemoteIPRanges (“10.100.xxx.xxx”)

New-Receiveconnector -Server cs-msx4 -Name “Anonymous Relay cs-msx4” -TransportRole “FrontendTransport” -Bindings (“0.0.0.0:25”) -Usage “Custom” -PermissionGroups AnonymousUsers -AuthMechanism Tls -RemoteIPRanges (“10.100.xxx.xxx”)

Erlauben (Berechtigung) des Relay:
DEUTSCHES OS:
Get-ReceiveConnector “cs-msx3\Anonymous Relay cs-msx3” | Add-ADPermission -User “NT-Autorität\Anonymous-Anmeldung” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”
Get-ReceiveConnector “cs-msx4\Anonymous Relay cs-msx4” | Add-ADPermission -User “NT-Autorität\Anonymous-Anmeldung” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”
ENGLISCHES OS:
Get-ReceiveConnector “cs-msx3\Anonymous Relay cs-msx3” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”
Get-ReceiveConnector “cs-msx4\Anonymous Relay cs-msx4” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”

EVENTUELL, falls notwendig:
Set-ReceiveConnector -identity “Anonymous Relay cs-msx3” -TarpitInterval 00:00:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx3” -ConnectionTimeout 00:30:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx3” -ConnectionInactivityTimeout 00:20:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx3” -MaxAcknowledgementDelay 00:00:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx3” -MaxInboundConnection 10000
Set-ReceiveConnector -identity “Anonymous Relay cs-msx3” -MaxInboundConnectionPerSource unlimited

Set-ReceiveConnector -identity “Anonymous Relay cs-msx4” -TarpitInterval 00:00:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx4” -ConnectionTimeout 00:30:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx4” -ConnectionInactivityTimeout 00:20:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx4” -MaxAcknowledgementDelay 00:00:00
Set-ReceiveConnector -identity “Anonymous Relay cs-msx4” -MaxInboundConnection 10000
Set-ReceiveConnector -identity “Anonymous Relay cs-msx4” -MaxInboundConnectionPerSource unlimited

Übernahme der IP Listen von den Exchange 2010 Anonymous Relay Connectors auf die Exchange 2016 Anonymous Relay Connectors:
Set-ReceiveConnector “cs-msx3\Anonymous Relay cs-msx3” -RemoteIPRanges ( Get-ReceiveConnector “cs-msx1\Anonymous SMTP cs-msx1” ).RemoteIPRanges
Set-ReceiveConnector “cs-msx4\Anonymous Relay cs-msx4” -RemoteIPRanges ( Get-ReceiveConnector “cs-msx1\Anonymous SMTP cs-msx1” ).RemoteIPRanges