How to install Exchange 2013 Anti Spam:

& $env:ExchangeInstallpathScriptsInstall-AntiSpamAgents.ps1

Add IP addresses on all Exchange Servers. Example:

Set-TransportConfig -InternalSMTPServers 10.2.1.10

Check it applied:

 

Get-TransportConfig | Format-List InternalSMTPServers

Restart Microsoft Exchange Transport Service:

Restart-Service MSExchangeTransport

Here is the basic setup that I use but pick and choose what you want and change values where necessary:

 

& $env:ExchangeInstallPathScriptsInstall-AntiSpamAgents.ps1
Restart-Service MSExchangeTransport
Add-IPBlockListProvider -name bl.spamcop.net -lookupdomain bl.spamcop.net
Add-IPBlockListProvider -name zen.spamhaus.org -lookupdomain zen.spamhaus.org
Set-SenderIDConfig -SpoofedDomainAction Delete
Set-SenderReputationConfig -SenderBlockingEnabled $true -SrlBlockThreshold 6 -SenderBlockingPeriod 36
Set-SenderFilterConfig -BlankSenderBlockingEnabled $true
Set-ContentFilterConfig -SCLQuarantineThreshold 6
Set-ContentFilterConfig -SCLDeleteEnabled $true
Set-ContentFilterConfig -SCLQuarantineEnabled $true -QuarantineMailboxadministrator@domain.com
Set-ContentFilterConfig -SCLRejectEnabled $false

These I usually add as well (but please be aware that if an email appears on any of these lists it will be blocked. Saying that I haven’t had any real issues as of yet and SPAM problems have dropped dramatically.

Add-IPBlockListProvider -name zen.spamhaus.org -lookupdomain zen.spamhaus.org
Add-IPBlockListProvider -name bb.barracudacentral.org -lookupdomain bb.barracudacentral.org
Add-IPBlockListProvider -name ix.dnsbl.manitu.net -lookupdomain ix.dnsbl.manitu.net
Add-IPBlockListProvider -name bl.spamcop.net -lookupdomain bl.spamcop.net
Add-IPBlockListProvider -name combined.njabl.org -lookupdomain combined.njabl.org

Add-IPBlockListProvider -Name dnsbl.sorbs.net -LookupDomain dnsbl.sorbs.net
Add-IPBlockListProvider -Name cbl.abuseat.org -LookupDomain cbl.abuseat.org
Add-IPBlockListProvider -Name spam.dnsbl.sorbs.net -LookupDomain spam.dnsbl.sorbs.net
Add-IPBlockListProvider -Name spam.rbl.msrbl.net -LookupDomain spam.rbl.msrbl.net
Add-IPBlockListProvider -Name bl.spamcannibal.org -LookupDomain bl.spamcannibal.org
Add-IPBlockListProvider -Name psbl.surriel.com -LookupDomain psbl.surriel.com

Add these Allow Lists as well:

Add-IPAllowListProvider -name swl.spamhaus.org -lookupdomain swl.spamhaus.org
Add-IPAllowListProvider -name iadb.isipp.com -lookupdomain iadb.isipp.com
Add-IPAllowListProvider -name query.bondedsender.org -lookupdomain query.bondedsender.org
Add-IPAllowListProvider -name hul.habeas.com -lookupdomain hul.habeas.com

Enable Logging:

Set-TransportService *SERVERNAME* -AgentLogEnabled $true -AgentLogPath “D:SPAM” -AgentLogMaxFileSize 50MB -AgentLogMaxDirectorySize 500MB -AgentLogMaxAge 14.00:00:00

Hope this helps 🙂

Leave a Reply

Your email address will not be published. Required fields are marked *