Dear All, Having freshly installed Ex2010 SP1 on Win 2k8 Ent (SP1). All seems to be working. Can send to both internal/external...etc. It seems that unless I tick the option for "Receive Connectors/Default <Name> /Permission Group/Anonymous" under the Server Configuration/Hub Transport, I cannot receive emails from the Internet, i.e external senders. Is this correct? is this not a security risk? Kindly please advise. Many thanks, BinaBina Hejazi

that is correct. Enabling anonymous connections allows, well anonymous connections from the internet. They dont authenticate to your server so it needs to be anonymous. :) The recommended way to do this is to leave the default connector alone and create an Internet Receive connector with anonymous connection permissions: http://technet.microsoft.com/en-us/library/aa996395.aspx As for the security risk, I dont like exposing the hub transports to the internet. I would deply an edge solution, either Exchange 2010 Edge, or a 3rd party product or vendor you can outsource the email receiving to. Then on your internet receive connector, its scoped to only allow connections from the edge ip and the firewall only allows traffic on port 25 from that ip to the Exchange servers.

Hi Andy, many thanks, well explained. I think I will simply setup a new connector as you have suggested. Thanks again, BinaBina Hejazi