Documentation Home > Exchange Connector

Exchange Connector FAQ: Configuring Exchange 2010 Relay Settings for Exchange Connector

This article is also available for Exchange 2019, 2016 & 2013, Exchange 2007 and Exchange 2003.

Exchange Connector delivers mail to Exchange Server using the SMTP protocol, and therefore requires relay permissions to the server in order to be able to deliver mail. The SMTP server also needs to have anonymous access enabled (this is the default setting for mail servers and is safe, because only a specific list of computers will be allowed to relay). To configure the authentication and relay settings for compatibility with Exchange Connector, Receive Connector settings in Exchange may need to be adjusted.

Exchange 2010 needs to be installed with the Hub Transport role. By default, three receive connectors are created:

  • Client Receive Connector � this runs on port 587 and is designed for internal connections only, as it has lower security settings. This is the recommended Receive Connector for Exchange Connector.
  • Default Receive Connector � this runs on port 25 (default SMTP port) and is designed for retrieving external (Internet) mail.
  • Internal Receive Connector � this is designed for communication between different Exchange Servers in the network, such as when the Edge Transport role is installed on a separate machine.

It is possible to create a new Receive Connector for use with Exchange Connector. If this approach is taken, it is recommended that a port number other than 587 or 25 is used. It is recommended that a new Receive Connector is created if other applications using Exchange are dependent on particular settings of the Client receive connector.

Care needs to be taken with the default configuration in recent versions of Windows and Exchange 2010 with respect to setting listening IP addresses, especially if the name localhost is used as the server name, as the default IPv6 settings cause localhost to resolve to ::1 and not 127.0.0.1. In most cases, it is recommended to use the fully-qualified DNS name of the server (e.g. server.mydomain.local), and check the exact IP address it resolves to when the ping command is used from the server itself.

To avoid creating an open relay configuration, it is necessary to ensure that the receive connector used by Exchange Connector is not externally accessible. If the built-in receive connectors must allow external connections, create a new receive connector which only allows connections from local IP addresses (see below).

Configuring Exchange Server

Select Server Configuration and Hub Transport, then select the server in the top list of the right hand pane. The receive connectors for that particular server will be displayed in the bottom section of the right hand pane.

Exchange Management Console � Receive Connectors

Open the properties of the Receive Connector to be used, and select the network tab. The top section specifies the IP addresses which the receive connector listens on. For simplicity, it is recommended that this is set to all available IP addresses. The port number does not matter for receive connectors which are not used to retrieve external mail.

In the bottom section, the list of IP addresses must contain the IP address of the machine on which Exchange Connector is installed, even if this is the same machine on which Exchange is installed. If you are using the localhost alias as the server name, be sure to include the loopback addresses (127.0.0.1 and ::1) in the range.

Exchange Receive Connector Network Properties

On the Authentication tab, deselect all authentication mechanisms except "Externally Secured (for example, with IPsec).

Exchange Receive Connector Authentication Properties

On the permission groups tab, select "Exchange users" and "Exchange servers". If Exchange Connector is installed on a machine other than the Exchange server, also select "Anonymous users".

Exchange Receive Connector Permission Groups Properties

Click OK to save the Receive Connector settings.

Configuring Exchange Connector

Exchange Connector must be configured to use the appropriate server name or IP address, and port number, of the configured Receive Connector. These settings are located in the Options dialog in the Delivery section, shown below.

Exchange Connector Delivery Settings

If the Test button indicates that the relay settings are invalid after performing the above configuration, verify with the ping command that the IP address which the server name resolves to is allowed in the Network settings of the Receive Connector. If localhost is used, make sure the loopback addresses (127.0.0.1 and ::1) are in the IP address range. Also verify that the port number is correct.

If clicking the Test button does not indicate a successful connection, Exchange Connector will be unable to deliver any mail to Exchange. Repeat the above steps under "Configuring Exchange Server" to ensure that the Receive Connector is correctly set up.