Trustwave and Cybereason Merge to Form Global MDR Powerhouse for Unparalleled Cybersecurity Value. Learn More

Trustwave and Cybereason Merge to Form Global MDR Powerhouse for Unparalleled Cybersecurity Value. Learn More

Services
Managed Detection & Response

Eliminate active threats with 24/7 threat detection, investigation, and response.

Co-Managed SOC (SIEM)

Maximize your SIEM investment, stop alert fatigue, and enhance your team with hybrid security operations support.

Advisory & Diagnostics

Advance your cybersecurity program and get expert guidance where you need it most.

Penetration Testing

Test your physical locations and IT infrastructure to shore up weaknesses before exploitation.

Database Security

Prevent unauthorized access and exceed compliance requirements.

Email Security

Stop email threats others miss and secure your organization against the #1 ransomware attack vector.

Digital Forensics & Incident Response

Prepare for the inevitable with 24/7 global breach response in-region and available on-site.

Firewall & Technology Management

Mitigate risk of a cyberattack with 24/7 incident and health monitoring and the latest threat intelligence.

Solutions
BY TOPIC
Microsoft Security
Unlock the full power of Microsoft Security
Offensive Security
Solutions to maximize your security ROI
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
About Us
Awards and Accolades
Trustwave SpiderLabs Team
Trustwave Fusion Security Operations Platform
Trustwave Security Colony
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats
Loading...
Loading...

HOWTO: Configuring MailMarshal SMTP (SEG) to forward mail to Microsoft Exchange Server 2010 or 2007

Expand / Collapse


This article applies to:

  • Trustwave MailMarshal (SEG) (Trustwave SEG) 6.4 and above
  • Microsoft Exchange Server 2007
  • Microsoft SBS 2008 or 2011
    • Note: SBS is no longer supported by Microsoft. MailMarshal (SEG) 10 and above does not support installation on SBS servers.
  • Microsoft Exchange Server 2010

Question:

  • Installing SEG/MailMarshal SMTP with Exchange Server
  • Installing SEG/MailMarshal SMTP with Microsoft SBS
  • How to configure MailMarshal SMTP to forward mail to Microsoft Exchange Server
  • How to configure Microsoft Exchange Server 2007 to forward and receive email from MailMarshal SMTP
  • How to configure Microsoft Exchange Server 2010 to forward and receive email from Trustwave SEG 

Procedure:

To configure MailMarshal SMTP to forward email to your Microsoft Exchange Server 2007 or 2010 installation, follow the steps in this article.

For instructions that relate to Exchange 2013 and above (and later SEG interfaces), see article Q20645.

Please read through and understand the details, particularly about port assignments, before starting.

NOTES:
  • Port 25 assignment: When installing MailMarshal SMTP (Trustwave SEG) and Exchange server on the same computer, you will most likely find that both attempt to use port 25 for SMTP email. Generally you should allow MailMarshal to use this port (to accept email from external locations) and configure Exchange to use another port. Port 97 is usually available for this purpose.
  • The steps outlined below have been tested using the Hub Transport Server configuration. There are many other configuration options not detailed here. 
  • Two procedures are given for configuring MailMarshal SMTP delivery. The first is for the configuration of MailMarshal if it has not already been installed. The second can be used to change the settings after MailMarshal is already installed.

Configuring MailMarshal SMTP Delivery During Initial Installation

  1. In the Configuration Wizard, on the Local Domains window, click New and enter the details of your Local Domain. Click OK and then Next
  2. On the Delivery window enter the IP Address and Port of your Microsoft Exchange Server in the Local Domain email should be forwarded to the following mail server IP/port field.
    • If Exchange and MailMarshal are on the same server, be sure to configure and use a unique port for Exchange, as mentioned above.
  3. Select MailMarshal will deliver external email itself using DNS resolution. Click Next and then Finish. See below.

Configuring MailMarshal SMTP Delivery After Installation:

  1. In the MailMarshal SMTP Configurator, expand Server and Array Configuration and select Routes.
  2. Double click on the Default Routing Table.
  3. Double click on the Local Domain you would like to forward to Microsoft Exchange Server.
  4. On the Domain Routing window select the IP Address you are currently using to route mail and click Edit.
  5. Change the IP address to the IP Address of your Microsoft Exchange Server installation. See below.
  6. Make any changes to the Port and Priority for the route. For more information see the MailMarshal SMTP Help.
    • If Exchange and MailMarshal are on the same server, be sure to configure and use a unique port for Exchange. See the section about configuring Exchange below.
  7. Click OK and then OK again.

Configuring MailMarshal SMTP Relaying Permissions:

In most cases the above steps will also allow Exchange Server to relay outgoing email through MailMarshal SMTP. However, if you find that relaying from the Exchange Server is denied by MailMarshal, you can allow relaying using the following steps:

  1. In the MailMarshal SMTP Configurator, expand Server and Array Configuration and select Relaying.
  2. Double click on the Default Relay Table.
  3. Click New. Enter the IP Address of the Microsoft Exchange Server you want to allow to forward email to MailMarshal SMTP. See below.
  4. Click OK and OK again. Commit the configuration.

Configuring Exchange Server

Follow the steps below to configure Microsoft Exchange Server to receive email from MailMarshal SMTP:

  1. In the Exchange Management Console, expand Server Configuration (for Exchange 2010, Microsoft Exchange On-Premises|Server Configuration) and select Hub Transport.
  2. Highlight the Hub Transport Server you wish to use.
  3. If a receive connector does not exist, click New Receive Connector.
    • If a Default receive connector exists, edit it and check the network and permission settings as described below.
  4. Enter a Name for the connector and select Custom from the menu.
  5. On the Local Network settings window, ensure the Local IP address(es) is set to All Available. (Note that MailMarshal SMTP currently uses IPv4 only.)
      • For the Port:
        • If Exchange and MailMarshal are on the same server, DO NOT use port 25. Instead, select an unused port. Port 97 is often available.
        • If Exchange and MailMarshal are on separate servers, generally you should use port 25.
      • Enter the FQDN for the connector, and then click Next.
      1. For Remote Network settings leave the default IP range or enter in the appropriate IP range for your installation and click Next. Click New.
      2. After the wizard has completed, right click on the new Receive Connector and select Properties. See Below.
      3. Under the Permission Groups tab, ensure the Anonymous users box is checked, click OK.

          

      Follow the steps below to forward mail from Microsoft Exchange Server to MailMarshal SMTP:

      1. In the Exchange Management Console, expand Organization Configuration (for Exchange 2010, Microsoft Exchange On-Premises|Organization Configuration) and select Hub Transport.
      2. Select the Send Connectors tab.
      3. For a default installation, a Send Connector named Internet will already be configured. Verify the network and security settings as described below
      4. Click New Send Connector in the right pane. Enter a Name for the connector and select Custom from the menu. Click Next.
        • In a default installation, a Send Connector named Internet may already be configured. You can use this connector. Verify the network and security settings as described below.
      5. Click Add and enter * as the Address space for the connector. Click Next.
      6. On the Network Settings window, select Route mail through the following smart hosts. Click Add and enter the IP Address where MailMarshal accepts email. Click OK  and then Next.
        • For array installations, use the address of an email processing node or the external IP of a load balancer; for single servers, the address of the server
      7. Select an authentication method. All MailMarshal versions support Basic authentication; Version 6.8 and above also supports Basic over TLS.
        • Before enabling authentication here, ensure you have set up the required account in MailMarshal SMTP.
      8. On the Source Server window select the Hub Transport server and click Next.
      9. Click New to create the connector. See below.

       


      Notes:

      • If you are running multiple Exchange servers, see the following Knowledge Base article for additional information:
        • Q10276:  How do I configure MailMarshal SMTP in an environment with Multiple Exchange 2000 or 2003 servers?

      To contact Trustwave about this article or to request support:


      Rate this Article:
           

      Related Articles



      Add Your Comments


      Comment submission is disabled for anonymous users.
      Please send feedback to Trustwave Technical Support or the Webmaster
      .