Sunday, April 19, 2015

Whitelist Domains for Exchange 2010 Content Filter

Our standard antispam solution for clients is Symantec Mail Security. The main benefit of this software is a very low number of false positives. However, we've been having issues at a few clients where more spam gets through than they'd like. For these clients, we've added the built-in Exchange 2010 content filtering as another layer.

With the Exchange 2010 content filter, we've run into issues where some domains are not able send pdf attachments. It seems that most of these senders are hosting their domains using Google mail where you can't blame the content filter for being a bit overly sensitive.

To resolve this, we add the domain to the whitelist for the content filter with the following command:
Set-ContentFilterConfig -BypassedSenderDomains "domain.com","domain.org"

When you use this command, it overwrites the existing list of domains. If this is a long list, rather than risk making a typo, you can use these few commands to add a new domain to the existing list:
$domains = (Get-ContentFilterConfig).BypassedSenderDomains
$domains.add("newdomain.com")
Set-ContentFilterConfig -BypassedSenderDomains $domains
To simplify this process and make it less likely that a typo wipes out your whitelist of domains, you can use the following script:
$newDom = Read-Host "Domain to add"
$domains = (Get-ContentFilterConfig).BypassedSenderDomains
$domains.add($newDom)
Set-ContentFilterConfig -BypassedSenderDomains $domains

No comments:

Post a Comment