Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

relay mail to external host if not an internal mail address, possible to setup?

hello,

we have a C160 Ironport cluster and we want to know if we can implement the following scenario for special domains.                 

On incoming mail we would like to check if recipient is existing in AD (mail address in exchange) and if yes rounting the mail to our exchange server if mail address is not found in AD(exchange) we want to route the mail to an external host (IP address or domain name)

Does anyone know if such a setup is possible with our Ironport appliance?

Everyone's tags (5)
3 REPLIES

relay mail to external host if not an internal mail address, pos

So, its unclear to me what you mean by "special domains".  I assume they are domains that you know of? eg. you're not acting as an open relay.

On the listener for inbound mail, add the domains the box should accept mail for to the Recipient Access Table.  As you add each domain, you can tell it to "bypass ldap accept queries for this recipient".

(eg, don't check if aaa@specialdomain1.com exists... just accept it...)

Then in Network>SMTP routes, add a route for the domain to send it to the host for that domain...

Community Member

relay mail to external host if not an internal mail address, pos

i think i got your question.....

you can't do the both together because RAT Table or AD they can either accept the mail or reject them.

the better solution is if you know the paticular domain(if you can trust on them ) you can add them in your inbound HAT table on the top and create a policy with Connection Behavior:RELAY and apply this mail flow policy to your sender group.

(it will automatically relay your mail to the particular mail server (that is situated outside) )

relay mail to external host if not an internal mail address, pos

Another possible scenario would be a group query on an incoming mail policy. If you can write a query that returns a positive match for an existing account (i.e. because the address is part of the user group), the message enters this mail policy, where you have a content filter that redirects the message to your Exchange Server. Otherwise, the message will go to the default mail policy, where you can have another filter redirecting the message to a different server. This solution also works with multiple recipients, where a part exists in AD, and a part does not.

Hope that helps,

Andreas

1027
Views
0
Helpful
3
Replies
CreatePlease to create content