Exchange 2007 & 2010 - Locking Down the Server

Microsoft Exchange 2007 can be locked down to only accept email from the MailRoute servers by following these steps:

  1. Open Exchange Management Console
  2. Under the Server Configuration node, select Hub Transport
  3. Choose the receive connector you are using for your incoming SMTP traffic, right click and select Properties
  4. Click the Network tab
  5. Find where it says Receive mail from remote servers which have these IP addresses
  6. Select Add -> IP Address
  7. In the Add IP address(es) of Remote Servers box, enter the MailRoute network in CIDR notation:
  8. There is probably a default entry in there for an address range that will need to be removed, because it allows connection from any IP address. It looks like this: -

    These changes should take effect right away without having to restart any services, but we have seen some instances where a restart of Exchange services is required.

Microsoft has online documentation on how to do this at

You may need to refer to other sections of that technical reference document if your Exchange configuration is non-standard.


NOTE: If you stop receiving email and your configuration / firewall has not changed please check the permissions and select allow anonymous users


NOTE:  Content Filters and Sender IDs need to be disabled on the Exchange server.  If the server's mail traffic is filtered by MailRoute, it is not necessary to keep them enabled. 

Please see our article on how to do this here


 Start a free 30-day trial today.

Contact or for more information. 


Have more questions? Submit a request


  • 0
    Nathan Chan

    Sorry to be a broken record, but is there any possibility Exchange 2013 will be added soon? I have a good idea what settings I have are OK, but Exchange 2013 is not my strongest subject.

Please sign in to leave a comment.