Important: If you are using Exchange with smtp-proxy.tm.net.my, you must configure your server to reject invalid recipients during the SMTP session, rather than generating NDRs and sending them out later. In the Message Delivery Properties dialog box in Global Settings, find the Recipient Filtering tab. Make sure that "Filter recipients who are not in the Directory" is checked, and Apply the settings.
Go to "Start/All Programs/Microsoft Exchange" and click on "System Manager".
Expand the "Connectors" item.
By default, Exchange uses SMTP for outbound connections, so you should find an "Internet Mail SMTP Connector" already there. Right click on it and select "Properties".
On the "General" tab, select "Forward all mail through this connector to the following smart hosts" and enter "smtp-proxy.tm.net.my" in the field below.
On the "Advanced" tab, click on the "Outbound Security" button to get to "Outbound Security" dialog box.
By default, exchange sets up security to use "Anonymous Access". Change this to "Basic authentication (password is sent in clear text)" then click the "Modify" button, enter your domain username and password, and click "OK".
Back at the "Outbound Security" dialog box, enable "TLS Encryption" and click "OK".
Exchange's SMTP virtual server does not support authentication. In order to use smtp-proxy, you must add an SMTP connector.
Important: If you are using Exchange with smtp-proxy, you must configure your server to reject invalid recipients during the SMTP session, rather than generating NDRs and sending them out later. In the Message Delivery Properties dialog box in Global Settings, find the Recipient Filtering tab. Make sure that "Filter recipients who are not in the Directory" is checked, and Apply the settings.
Click on Routing Groups -> First routing group -> Connectors.
Add an SMTP connector by right clicking on Connectors.
In the properties, select "Forward all mail through this connector to the following smart hosts" and enter smtp-proxy.tm.net.my in the field below.
Add a local bridgehead. If you have only one server, this is your server.
Select Properties: Deactivate "Send HELO instead of EHLO".
Activate "Do not send ETRN/TURN".
On the Delivery Options page, select "Specify when messages are sent through this connector" and specify "Always Run" (or whatever you desire).
Under the Advanced tab, click "Outbound Security..." then "Basic authentication" then click Modify. Enter your domain username and password here.
Under Address Space, click Add then SMTP. Domain should be * and cost 1.
Connector Scope is probably "Entire organization".
It is not necessary to click "Allow messages to be relayed through this domain" (and this option probably should not be selected).
Open the Exchange Management Console and choose -> Organization Configuration -> Hub Transport.
Under "Actions" select "New Send Connector".
In the "New SMTP connector" wizard enter "SecurityGateway SMTP Connector" for the connector name in the "Introduction" screen.
From the "Select the intended use for this Send Connector" drop down list box select "Internet".
In the "Address space" screen click on "Add" and enter *.
Click "Ok" and click "Next".
In the "Network Settings" screen choose "Route mail through the following smart host".
Click on "Add" and insert the IP address of the machine where SecurityGateway is installed then click ‘Next’. (if SecurityGateway is installed on the same server you can use 127.0.0.1 here)
In the "Configure smart host authentication settings" screen if you are requiring SMTP authentication in SecurityGateway specify the username and password you've configured for this domain in SecurityGateway and click "Next".
In the "Source Server" screen select the Hub Transport server with which the connector will be associated.
In the "New SMTP Send Connector" screen verify the configuration summary contains the required details.
Complete the wizard in order to create the New Send Connector.
(It's important to note here that if you have multiple Send Connectors you need to change each of these to route through SecurityGateway or the new connector you added above won't take effect)
Follow also the procedures necessary bellow for configure the environment correctly for SMG servers: _http://www.symantec.com/business/support/index?page=content&id=TECH122730
Microsoft Exchange Server 2000 versions.
Microsoft Exchange Server 2003 versions.
Imported Document ID: TECH189653
Subscribing will provide email updates when this Article is updated. Login is required.