Windows Networking/Exchange 2003/Configuring to use ASSP

From Servfire
Jump to: navigation, search

This is a little guide on using the awesome Anti-Spam SMTP Proxy with Exchange.

Installing ASSP

Install a version of Perl for Windows (I used ActivePerl). Then extract the ASSP install folder. I then load up ASSP from the command line using "perl assp.pl" and connect to localhost:55555 once it's done.

Go to the "Info and Stats" page and expand the "Perl Modules" section. Once this is open, kill ASSP (Ctrl-C) and we'll need to install some of the missing modules to expand it's abilities.

The two commands you'll want for this are "ppm" and "cpan", if a module isn't available from ppm, you might have luck building it with cpan (ActivePerls cpan wrapper will download and configure a MingW32 build environment automatically for you).

Go through the module list installing everything you can with, ie, "ppm install Module::Name::Here". Once you've gone through the list, run "cpan install Module::Build" first, that'll set up one of the dependancies for the CPAN environment that seems to get missed as of the time of writing.

You can load up ASSP again, refresh the Info and Stats page, after PPM, to see what's left for CPAN (kill it again after refreshing).

Configuring Exchange

I'm using ASSP in a double SMTP setup, Exchange is configured with two seperate SMTP servers.

The Default SMTP Virtual Server is modified, change the port it's listening on to 125 (General tab, Advanced button). Smart host is set to [127.0.0.1] (Delivery tab, Advanced button) and Outbound TCP port set to 225 (Delivery tab, Outbound connections button).

The second SMTP server is modified, listen port is 325, and connection/relay access from 127.0.0.1 only (Access tab, Connection/Relay buttons).

Configuring ASSP

Fire up ASSP and load up the web interface, under Network Setup, change smtpDestination to 125, under Relaying, change relayHost to 127.0.0.1:325 and relayPort to 127.0.0.1:225. Make any other changes you need and hit Apply Changes. ASSP will be listening on 25 by now and should be filtering mail.

Configured workflow

Inbound mail: External -> ASSP:25 -> Exchange:125 -> Local Delivery

Outbound mail: Exchange Internal -> ASSP:225 -> Exchange:325 -> External:25

This gives you the ASSP outbound capture so automatic whitelisting works.