Skip to Main Content
Exchange Server Cookbook
book

Exchange Server Cookbook

by Paul Robichaux, Missy Koslosky, Devin L. Ganger
June 2005
Intermediate to advanced content levelIntermediate to advanced
464 pages
13h 2m
English
O'Reilly Media, Inc.
Content preview from Exchange Server Cookbook

7.21. Setting IP Address Restrictions for Multiple Servers

Problem

You need to maintain the connection restriction, relay restriction, and global accept/deny lists on your Exchange servers.

Solution

Using a command-line interface

Use the SMTP Internet Protocol Restriction and Accept/Deny List Configuration Tool (ExIpSecurity). You can download it from:

http://www.microsoft.com/downloads/details.aspx?familyid=dcce0536-7edc-40b4-9950-8b6906abda2d&displaylang=en

To add an IP address to the connection restriction list:

> cscript ipsec.vbs -d <DC> -s <server> -i <VSnum> -o a -r connection -v <IPaddress>

Example:

> cscript ipsec.vbs -d DC01 -s EXCH01 -i 1 -o a -r connection -v 192.168.0.1

To add a domain to the relay restriction list:

> cscript ipsec.vbs -d <DC> -s <server> -i <VSnum> -o a -r relay -t domain -v <domain>

Example:

> cscript ipsec.vbs -d DC01 -s EXCH01 -i 1 -o a -r relay -t domain -v contoso.com

To grant connection access to all IP addresses or domains except the list specified:

> cscript ipsec.vbs -s <server> -i <VSnum> -o s -r connection -g grant -d <DC>

Example:

> cscript ipsec.vbs -s EXCH01 -i 1 -o s -r connection -g grant -d DC01

To delete a range of IP addresses from the relay restriction list:

> cscript ipsec.vbs -s <server> -i <VSnum> -o d -r relay -v <IPaddress> -m <mask> -d <DC>

Example:

> cscript ipsec.vbs -s EXCH01 -i 1 -o d -r relay -v 192.168.0.1 -m 255.255.255.0 -d DC01

To add a single entry to the global accept/deny list (Exchange Server 2003 only):

> cscript ipsec.vbs -d <DC> ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Microsoft® Exchange Server 2010: Best Practices

Microsoft® Exchange Server 2010: Best Practices

Siegfried Jagott, Joel Stidley
Microsoft® Exchange Server 2003 Unleashed

Microsoft® Exchange Server 2003 Unleashed

Rand H. Morimoto - MCSE, Joe R. Coca, CISSP Kenton Gardinier - MCSE MCSA, MCSA Michael Noel - MCSE+I
Microsoft® Exchange Server 2013 Unleashed

Microsoft® Exchange Server 2013 Unleashed

Rand Morimoto, Michael Noel, Guy Yardeni, Chris Amaris, Andrew Abbate

Publisher Resources

ISBN: 0596007175Errata Page