Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Wednesday, December 20, 2017 11:37 PM
Exchange 2016 on Server 2012.
I get this message in my app event logs:
Anti-spam agents are enabled, but the list of internal SMTP servers is empty. If there are any MTAs between this server and the Internet, populate this list by using the Set-TransportConfig cmdlet in the Exchange Management Shell.
I've found stuff online that says if one has only a single exchange server, then it is OK to ignore. In my situation, my Sophos UTM (firewall) sits between my exchange server and the internet, it is set as a "smarthost" in my send connector.
Do I still ignore the message, or do I need to figure out syntax for "Set-TransportConfig".
Thanks, in advance.
All replies (1)
Thursday, December 21, 2017 7:12 AM âś…Answered
Hi Oscar,
In your environment, because only one exchange server, doesn't need any internal smtp between servers, so you can still ignore the message.
I recommend you refer to the following article and it explains that why this event is generated (It applies to Exchaneg 2016 also):
Anti-spam agents are enabled, but the list of internal SMTP servers is empty -- Explanation
The Warning event indicates that Exchange anti-spam agents are enabled and that the list of internal Simple Mail Transfer Protocol (SMTP) servers is empty.
In some organizations, the Hub Transport server role or the Edge Transport server role that is running connection filtering is installed on computers that don't process SMTP requests directly on the Internet. In this scenario, the transport server is behind another front-end SMTP server that processes inbound messages directly from the Internet.
The Connection Filter agent must be able to extract the correct originating IP address from the message. To extract and evaluate the originating IP address, the Connection Filter agent must parse the Received headers from the message and compare those headers with the known SMTP server in the perimeter network.
When an RFC-compliant SMTP server receives a message, the server updates the message's Received header with the domain name and IP address of the sender. Therefore, for every SMTP server that is between the originating sender and the transport server, the SMTP server adds an additional Received header entry.
Best Regards,
Niko Cheng
Please remember to mark the replies as answers if they helped.
If you have feedback for TechNet Subscriber Support, contact [email protected].