Need help to control Spam


Dear All,

We are getting bulk spams and Microsoft Forefront application is unable to block those emails. All are those mails are like notice, court notice.

Forefront is just blocking its virus infectected attachments but passing spam to reach end users.

All the times its coming from different sender email id, different domains and IP address so its very difficult to block by these attributes.

Please find below message header sample

Received: from Edge1.abc.com (192.168.1.1) by

 HT1.abc.com (192.168.12) with Microsoft SMTP Server (TLS)

 id 14.2.318.1; Wed, 5 Feb 2014 02:46:35 +0530

Received: from kirkland.com (122.150.95.94) by Edge1.abc.com (192.168.1.1)

with Microsoft SMTP Server id 14.2.318.1; Wed, 5 Feb 2014

 12:25:47 +0530

Message-ID: <002201cf223f47f4d62c0200a8c0@Ron-PC>

From: Notice to quit <notice_support.8@kirkland.com>

To: <user.abc.com>

Subject: SUSPECT: Notice to quit No3443

Date: Wed, 5 Feb 2014 16:55:40 +1100

MIME-Version: 1.0

Content-Type: multipart/mixed;

                boundary="----=_NextPart_000_001F_01CF2293.199F4940"

X-Priority: 3

X-MSMail-Priority: Normal

X-Mailer: XimianEvolution1.4.6

X-MimeOLE: Produced By XimianEvolution1.4.6

Return-Path: notice_support.8@kirkland.com

Received-SPF: Neutral (EDGE01.abc.com: 122.150.95.94 is neither

 permitted nor denied by domain of notice_support.8@kirkland.com)

X-MS-Exchange-Organization-AuthSource: HT1.abc.com

X-MS-Exchange-Organization-AuthAs: Anonymous

Need your help to resolve this issue.

February 5th, 2014 6:02am

Hi,

if the email contains a virus set the action to purge, so the email won't be delivered to the recipient. In addition you can set the option to quarantine emails so you can access those emails in quarantine if you need them.

Greetings

Christian

Free Windows Admin Tool Kit Click here and download it now
February 5th, 2014 3:53pm

Thanks for you suggestions Christian,

But I am unable to find those option,please guide me with exact procedure to do so.

Regards,

Ketan Tande


February 6th, 2014 12:21am

Hi Ketan,

you can configure the options for the transport scan here:

http://technet.microsoft.com/en-us/library/cc483044.aspx

If you need further assistance please let me know.

Greetings

Christian

Free Windows Admin Tool Kit Click here and download it now
February 6th, 2014 3:03am

Hi,

If you wanted to configure a quarantine mailbox address, please click E-mail Policy, then click the Spam Filtering tab, click Content Filtering, and then click the SCL Thresholds tab. On the SCL Thresholds tab, select the Quarantine messages that have an SCL rating greater than or equal to check box, then specify a threshold and then provide a valid quarantine mailbox address.

More information:

Configuring spam filtering

Best regards,

Susie

February 6th, 2014 4:03am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics