Unfortunately, the MS SMTP service accepts mails from anywhere even if it shouldn't because it has this IMO design flaw that means that even for addresses it shouldn't relay for, it returns a 250 OK result to the sending MTA. This doesn't mean that it is set up as an open relay (in fact MS W2k3 SMTP is pretty well closed down by default) but it does look like an open relay because instead of doing the right thing and rejecting the mail when the originating machine connects to the SMTP service, it accepts it and then sticks it in the drop (IIRC) folder....
If you know all of the IP addresses that should be allowed to access the server then simply filter the connections by IP address in the relevant security panel of the SMTP section of IIS. If you don't then there is little you can do to stop this behaviour short of changing your SMTP server for one that rejects relay attempts at the correct time... The question is, why is your server being targetted as a possible SMTP relay so much that it kills your server with mail? Is this a new server? Did another server have the IP address your server is now on previously? If so was that server a known open relay? If you need any specifics about MS SMTP then feel free to refine your query! HTH Paul ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:194882 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
