There are probably better solutions than this but here are a few ideas:
- Don't allow mail from the outside world to your distribution lists - Create a mail policy for your distrib lists that drops spam instead of quarantining it - Only quarantine suspect spam and drop spam positive (I have yet to see a false-positive that was above suspect spam). Doing this most folks get 1-2 notifications a week instead of 7.
-you right about now allowing to send from outside world to DL ,i tried it by allowing only authenticated users to send to DL in my exchange server . but since allot of mail from inside domain are not actually authenticated by AD . i dropped it .
I will try you second suggestion even though i a bit worried by dropping the spam instead of quarantine it .
i tried using ldap+content filter -any suggestions ??
You cannot use ldap since the DL doesn't contains email addresses, but members DNs. The only other straight solution i think of is to create aliases list of all your internal DLs on the ironport appliances that will be exported and imported automatically by using some scripting language. this way, the anti-spam engine will scan the email message per specific recipient (which is a member of the alias group) and will not see any recipient of a DL email address.
The solutotion i see is to use ldap query for objectclass=group (AD2003). Enable it on the specific listner. the you need to add a incomming mail policy ,where the query search for the string "group" ,if true drop the mail don't quarantine it -then it will prevent the notification .
that it -what i could done in BrightMail in one click .
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...